I use Generate Centmin Mod Nginx Vhost - CentminMod.com LEMP Nginx web stack for CentOS to setup https connection with lets encrypt. Some of users were getting security error mostly on android and on chrome browser Whenever i did nginx restart i get the error shown in thread tittle i Used SSL Server Test: civil4m.com (Powered by Qualys SSL Labs) to analyse the ssl and found that Certificate rated as B and full chain was not found. I gone back to configuration, did lot of reading on different website and found that, ssl_trusted_certificate required is a CA certificate i look at this code and found that the path to CA and Cert were given same. /root/.acme.sh/acme.sh --installcert -d mydomain.com -d www.mydomain.com --certpath /usr/local/nginx/conf/ssl/mydomain.com/mydomain.com-acme.cer --keypath /usr/local/nginx/conf/ssl/mydomain.com/mydomain.com-acme.key --capath /usr/local/nginx/conf/ssl/mydomain.com/mydomain.com-acme.cer --reloadCmd /usr/bin/ngxreload --fullchainpath /usr/local/nginx/conf/ssl/mydomain.com/mydomain.com-fullchain-acme.key i tried to rename the path with new name by adding acmeca.cer but was got error many times then i added path to ca manually in ssl config file From ssl_trusted_certificate /usr/local/nginx/conf/ssl/mydomain.com/mydomain.com-acme.cer To ssl_trusted_certificate /root/.acme.sh/civil4m.com/ca.cer Then i restarted the nginx Then error of nginx: [warn] "ssl_stapling" ignored, issuer certificate not found gone and nginx restarted without any error. i again check th ssl config at SSL Server Test: civil4m.com (Powered by Qualys SSL Labs) to analyse the ssl and found rating as A+ Please tell me is i did anything wrong which may cause problem in future. If its a typing mistake made in tutorial, request you to correct it, I am not a coder, so whenever i get problem i will refer to it and also many would refer to it. By doing this this error got solved but still in handshake area i see Android 2.3.7 No SNI 2 Server sent fatal alert: handshake_failure IE 6 / XP No FS 1 No SNI 2 Server sent fatal alert: protocol_version IE 8 / XP No FS 1 No SNI 2 Server sent fatal alert: handshake_failure Java 6u45 No SNI 2 Server sent fatal alert: handshake_failure OpenSSL 0.9.8y Server sent fatal alert: handshake_failure Can anyone help me out, what is this and is it going to show security error on this type of browsers. Thanks. I am a total Noob, whatever coding i know is learn from Centminmod and i build my server from scratch through tutorials available here. So if i have to do some command line work, please write in details, else i cant understand. Hope someone will help me here.