> To make sure I understand, you start with a Root CA which I assume you > generated yourself and is self-signed? We use official certs from "StartCom Certification Authority" using " StartCom Class 2 Primary Intermediate Server CA" intermediate CA. But we just observed that the same setup works for some users when using GeoTrust with "RapidSSL CA" intermediate CAs. I have no idea why one setup works and one fails. Using exactly the same certificate files with https works fine. Also # openssl verify -CAfile /etc/pve/pve-root-ca.pem /etc/pve/local/pve-ssl.pem works fine. _______________________________________________ Spice-devel mailing list Spice-devel@xxxxxxxxxxxxxxxxxxxxx http://lists.freedesktop.org/mailman/listinfo/spice-devel