Hello Stuart,
Le ven. 20 mai 2022 à 16:31, Stuart Henderson a écrit :
> I think if it were actually signed _directly_ by a root CA then it would
> have worked anyway, the issue is where it's signed by an intermediate (which
> is the case for most, possibly all, CAs now in browser/OS root stores)
()Hello Stuart,
Thanks for giving it also a try - I was the one bothering Tobias
earlier today with
this use case of a Windows 10 (21H2) client trying to connect to an iked server
whose CA certificate wasn't self-signed, but signed by a root CA.
> For Windows this works provided that ISRG Root X1
