Voir aussi :
openssl s_client -connect isc.sans.org:443
On this page you'll find how to create only one file which contains your certificate and others chain certificates (Concatenate them in one), like, I think, you could have only one configuration directive to use : the CertificateFile, and to not need the CertificateChainFile anymore :
http://help.globalscape.com/help/eft5/admin/certificate_chaining.htm
http://www.fil.univ-lille1.fr/~wegrzyno/portail/PAC/Doc/TP5/tp-certif002.html
# Génération des clés openssl genrsa -out maCle.pem 1024 # Exportation de la partie publique openssl rsa -in maCle.pem -pubout -out maClePublique.pem