I am working on a .Net server application that uses SslStream to provide its

Question

0

Asked: May 12, 20262026-05-12T16:55:24+00:00 2026-05-12T16:55:24+00:00

I am working on a .Net server application that uses SslStream to provide its

0

I am working on a .Net server application that uses SslStream to provide its SSL sockets. It works with some clients (such as those based on libcurl), but other clients throw errors due to the lack of the intermediate certificate(s). How can I associate the intermediate certificate with the SslStream or X509Certificate2 object to make these clients happy?

Here’s the code I’m using now, when accepting the connection:

X509Certificate2 cert = new X509Certificate2("cert.pfx", "");
theSslStream.BeginAuthenticateAsServer(cert, ...);

If I were using OpenSSL I’d do this with SSL_CTX_add_extra_chain_cert(). I’ve looked at the X509Chain object but don’t see how to make it fit in.

Thanks.

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-12T16:55:24+00:00

Editorial Team

2026-05-12T16:55:24+00:00Added an answer on May 12, 2026 at 4:55 pm

Have you tried including the full chain in the pfx you’re using (eg, use OpenSSL to plug them all in)? I haven’t tried this specifically with SSLStream, but WCF doesn’t provide an explicit way to include intermediate certs- it just presents the full chain automatically if the intermediate certs are available in the source .pfx.

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

I am working on a .Net server application that uses SslStream to provide its

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply