Nacho,
Sorry I misunderstood. I am not exactly familiar with IIS 4.0
requirements, but what exactly goes wrong when you select the openssl
generated certificate? Also, please look at the file doc/openssl.txt for
info about putting an issuer alternative name and subject key identifier
extensions in your certificate.
_____________________________________
Greg Stark
Ethentica, Inc.
[EMAIL PROTECTED]
_____________________________________
----- Original Message -----
From: <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, March 21, 2001 1:10 PM
Subject: Re: how to generate a client certificate for IIS4.0
>
>
> No! my bowser shows me the 2 certificates, the working one and the non
working
> one.
> He sends the a list of CA's whith the 2 signing CA's.
>
> And I've tried to generate a client certificate with safelayer and it
works too!
>
> the safelayer cert and the NT one share this extensions:
>
> X509v3 Subject Key Identifier:
>
58:8B:44:AC:A6:CD:E9:70:8F:60:15:CF:2B:41:C3:B1:AD:98:94:88
> X509v3 Issuer Alternative Name:
> ..http://www.ecertchile.cl
>
> and I don't know how add the "Issuer Alternative Name" to my cert.
>
> I don't know any other relevant difference in the certs or the
configuration??
>
>
> Nacho.
>
>
> ______________________________________________________________________
> OpenSSL Project http://www.openssl.org
> User Support Mailing List [EMAIL PROTECTED]
> Automated List Manager [EMAIL PROTECTED]
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
