Imperva Cyber Community

 View Only

⭐ Imperva Insights: How does Cloud WAF work if we upload the SSL certificate that does not contain the full chain (root CA)?

  • 1.  ⭐ Imperva Insights: How does Cloud WAF work if we upload the SSL certificate that does not contain the full chain (root CA)?

    Community Manager
    Posted 12-18-2019 08:42

    Hello Impervians! 

    Let's kick your Wednesday off with an #ImpervaInsights! See below a frequently asked question our Support team receives on SSL Certificates:

    When uploading a custom certificate for our website to Imperva Cloud WAF, it is recommended that the certificate must contains the full chain - root CA, intermediate CA and the origin server certificate. We would like to know how Imperva Cloud WAF works if we uploaded the certificate which does not contain the full chain.

    What do our product experts have to say?​

    The root certificate and intermediate certificate should be uploaded with each new certificate (server), thus full chain should be presented for each upload. The main issue with missing chain, is that it may cause issue with certain application/mobile browsers, while the regular browser is able to correct the chain even if one was missing during the upload.

    Are there any additional top-of-mind questions you have on SSL certificates? 

    #ssl 


    #CloudWAF(formerlyIncapsula)

    ------------------------------
    Christopher Detzel
    Community Manager
    Imperva
    ------------------------------