contains the name of the issuing authority and the subject to whom the
certificate is issued. To validate a certificate, you must look at the issuer
of that certificate and confirm if you trust the issuer. If you do not trust
the issuer, you must see who issued the issuer certificate. Go up the chain
till you reach the root CA certificate or an issuer that you trust.
As part of the SSL
handshake, when a client requests a certificate, the NetScaler appliance
presents a certificate and the chain of issuer certificates that are present on
the appliance. An administrator can view the certificate chain for the
certificates present on the appliance and install any missing certificates.