We keep getting DST root on Apple devices

Come on... I currently have a Windows server using IIS. From the Plesk panel, I generate the domain certificate, using the Let's Encrypt plugin. This already enables HTTPS on my website.

So far, so good! Everything working, customers with Iphone, Android, Windows... Access and can view the website's home.

Now the problem starts, I use Nginx for load balancing the APIs inside my server. So I need to enable SSL on it too. Therefore, I export the certificate generated earlier and using OpenSSL to convert it into two files (certificado.crt and certificate.key). These files I use in the Nginx CONF file and that's it. Now my APIs pass through NGINX using the HTTPS protocol. Well, for most customers, at least it works. When any IPhone accesses the site, and tries to make a connection with the API (the one that goes through Nginx) the connections are blocked.

If I get a GET and put it on the link, it tries to access with the DST certificate... what I don't understand is because the home the client can access with HTTPS active, and it's the same certificate, but what goes to the Nginx (API) are blocked.

2 posts were merged into an existing topic: NGINX Enable SSL IIS exporting Let's Encrypt certificate