Missing intermediate certificate in MSG - F-Secure Community
<main> <article class="userContent"> <h3 data-version="3" data-article="000013333">Issue:</h3> <p>Recipients of encrypted mails are receiving warnings about untrusted pages and/or certificates when attempting to view messages.<br>Looking up the MSG address using an SSL checker gives the following type of reply:<br>"The certificate is not trusted in all web browsers. You may need to install an Intermediate/chain certificate to link it to a trusted root certificate."</p> <h3>Resolution:</h3> <p>The result from the SSL checker points to a missing intermediate certificate. This can be acquired from the Certificate Authority (CA) and added to the MSG server certificate using the instructions below:<br></p><ol><li>Download the required intermediate certificate in PEM-format from your Certificate Authority</li><li>Download the MSG server-certificate in PEM-format from the appliance web UI: <b>System -> Certificates -> Certificates</b>, use the <b>Download...</b>-button to the right of the certificate</li><li>Open the PEM-file downloaded from the MSG-appliance in your text editor of choice</li><li>To the end of this file, add the content of the intermediate certificate PEM-file and save it as a new PEM-file</li><li>Import the new certificate file into the MSG-appliance: <b>System -> Certificates -> Certificates</b>, use the <b>Import</b>-button above the certificate list</li><li>Take the new combined certificate in use by distributing it to the master and agent(s): <b>System -> Certificates -> Services</b></li></ol><p>Article no: 000013333</p> </article> </main>
