I have IdentityServer4 on macos. Idv has self signed certificate on localhost. It have worked till was updated macos to Monterey. Not working Safari, Chrome, Firefox. Safari stucks with blank page, Chrome shows error ERR_SSL_PROTOCOL_ERROR.
This certificate have worked from June without any problems till Monterey.
What I tried to do:
- created new certificate with 4096 key size.
- created new certificate with expires in 720 days.
But always I got same problem.
openssl version: libreSSL 3.4.1
And I tried create with dotnet dev-certs.
CodePudding user response:
it be that the server only provides out of date / old SSL protocols (like TLS 1.0 or SSL 2/3). Try to scan your service using the SSL Server Test at SSLLabs.
Also, HTTPS certificates should have 398 as the maximum life time. See this article for details:
In general I think using 2048 keys enough for most applications.