Knowledge Base
All KB
Documents DT Documents
Articles & FAQs AR Articles
Trouble Reports TR Trouble Reports
Software Updates SU Software Updates
Searching in : Trouble report
ID:TR04X11805
Added on: 2026-04-24
Last Update: 2026-04-24
Affects: 9.4
Due to be solved in: 9.x
Platform: All Platforms
Product: NoMachine Server
Severity: Minor
Status: Open
Print this article

CA-signed host certificate chain verification may fail

When using CA-signed host certificates with a PKI chain depth of 2 (leaf -> intermediate CA -> intermediate CA -> root CA), the client rejects the server certificate with message:

Certificate preverify failed.
Error is 22, 'certificate chain too long'.
SSL lib error '20' with reason '134'.
SSL error string 'certificate verify failed'.

Chains of depth 0 (leaf -> root) and depth 1 (leaf -> intermediate -> root) work correctly. Only depth >= 2 fails.