Are you doing a SSL_CTX_set_client_CA_list() in the server? > -----Original Message----- > From: Mario Bai [mailto:[EMAIL PROTECTED]] > Sent: Tuesday, February 22, 2000 4:52 PM > To: [EMAIL PROTECTED] > Subject: Certificate dilemma > > > Wondering if anyone ran into this or has a quick response. We > have been > trying to implement a solution where we can mint two types of > certs, one for > a server to serve up SSL and one for clients to stuff > information into. We > have no problem actually creating the certs, the one for the > server works > fine. The problem is on the client side. No matter what we > try, when we > "enforce" client certificates from the server's perspective > (Microsoft IIS > 4.0 spack 6), and import the client cert into the browser > (either IE 5.01 or > Netscape 4.7) neither browser recognizes the fact that there > is a client > cert loaded. We get a 403.7 error, that we have no client > certs to offer the > server. > > When we use certs obtained from Verisign, no problems... > > ---------------------------------------------------- > Mario Bai Straticom International, Inc. > Account Executive 1841 Broadway > (212) 315-0500 New York, NY 10023 > x410 www.straticom.com > ---------------------------------------------------- > > ______________________________________________________________________ > OpenSSL Project http://www.openssl.org > User Support Mailing List [EMAIL PROTECTED] > Automated List Manager [EMAIL PROTECTED] > ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
