[EMAIL PROTECTED] wrote:
> (2) I've learned how to import other peoples' certificates to my Netscape
> via LDAP. But, would that be possible via HTTP? When I tried to load PEM or
> DER certificate with application/x-x509-user-cert, Netscape refused it with
> a comment: "The Private Key for this certificate can not be found in your
> key database". When I tried to send DER encoded PKCS#7 (using crl2pkcs7
> -nocrl -certfile newcert.pem -outform DER -out p7.der) also as
> x-x509-user-cert, it didn't work for me either. What did I do wrong?
application/x-x509-user-cert is the MIME type for certs for which you
have generated the keypair (that's how Netscape behaves when presented
with this content type) -- other people's personal certs are used
only for S/MIME.
To load other people's certs into Netscape, present them with this
MIME type:
application/x-x509-email-cert
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
