Table of Contents
The third party authority for free XMPP server certificates is Startcom. Startcom root certificate is not normally known to your system as a valid certificate and appear as a self-signed certificate.
To make it known to your system as valid your have to install it in your system.
In any case or any operating system, you have to download the certificate from the issuer web site.
All done. To test it run following command:
openssl s_client -connect tigase.org:5223 -CApath /etc/ssl/certs
Scroll the output up and look for something like:
Which means certificate verification was successful. If you find however:
Look one line up for an error message which may look like this:
verify error:num=19:self signed certificate in certificate chain
Which means the root certificate is still not recognized in your system.