question

Tony Huang avatar image
Tony Huang asked

Why does my skill fail certification with the claim that my wildcard certificate is not signed by a trusted authority?

My skill keeps failing certification because Amazon claims that our certificate is not signed by a trusted authority. The endpoint is https://www.rei.com/alexa/assistant. We have a wildcard certificate provided by Akamai and issued by Symantec Class 3 Secure Server CA - G4. I have chosen the certificate option, "My development endpoint is a sub-domain of a domain that has a wildcard certificate from a certificate authority". www.rei.com should be a valid subdomain of the wildcard. If you verify the chain at https://www.ssllabs.com/ssltest/analyze.html?d=www.rei.com you will see that it has an "A" rating.

certificationcertificatessl
10 |5000 characters needed characters left characters exceeded

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

1 Answer

WangChao@Amazon avatar image
WangChao@Amazon answered

Hi Tony,

As stated in the feedback email to you, you probably just need to install one or more Intermediate certificates. Please contact your certificate provider for assistance doing this for your server platform. For your reference you can also verify the incorrect certificate chain here under "Chain issues" for each of server instances here at: “https://www.ssllabs.com/ssltest/analyze.html?d=rei.com”.

If you get further question, please login Amazon DevPortal and file a Contact Us case through https://developer.amazon.com/public/support/contact/contact-us. Thanks.

1 comment
10 |5000 characters needed characters left characters exceeded

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

We have a wildcard certificate for *.rei.com. Why are you verifying the certificate chain of "rei.com" when my endpoint uses "www.rei.com"? https://www.ssllabs.com/ssltest/analyze.html?d=www.rei.com

0 Likes 0 ·