What is Chain issue Contains anchor?
Does your SSLLABS report mention ‘Chain issues – Contains anchor’? Simple fix: Remove the Root CA from the concatenated certificate file. Use a text editor open your Root CA file as well as your Certificate file, check what the Root CA starts and end with and remove that section.
What does contains anchor mean?
When scanning through SSL Labs, it shows “Chain issues Contains anchor” It means that you have added Intermediate as well as Root CA, when you only need the Intermediate as the client will already have Root CA (will be already trusted by browser in browser certificate store).
Why does chain issues show ” contains anchor ” when scanning through SSL labs?
When scanning through SSL Labs, it shows “Chain issues Contains anchor” It means that you have added Intermediate as well as Root CA, when you only need the Intermediate as the client will already have Root CA (will be already trusted by browser in browser certificate store). You can get the same info using openssl command:
How to check for SSL chain issues report?
SSL Chain issues – Contains anchor | Not so many… Does your SSLLABS report mention ‘Chain issues – Contains anchor’? Remove the Root CA from the concatenated certificate file. Use a text editor open your Root CA file as well as your Certificate file, check what the Root CA starts and end with and remove that section.
How to fix ” chain issues ” contains anchor?
I just ran a quick test at ssllabs.com: got A+, which I’m happy about. However there’s one thing I don’t know how to “fix”: My site supports OCSP stapling and ssllabs keeps telling me: Chain issues: Contains anchor.
Is there a security risk with contains anchor?
So the issue is not so much “can the extra certificate fit into the initial window” (it most likely can, even with the old setting of 3 network segments), but “what other, more useful, data could we be sending instead”. However, there is no security risk with “Contains anchor”, you can largely ignore the “Contains Anchor” warning.