Can't answer your question, but... > I need to create X509v3 Certificate for client authenication and email > encryption and signing. > I create PKCS10 request (taken from MSDN example)
Is this example online? I'm working on this problem myself right now (just got the request into the database and signed....) > strReq = Enroll.createPKCS10( strDN, "1.3.6.1.4.1.311.2.1.21") The sample code I found (all in Russian :-( ) has a NID 1.3.6.1.5.5.7.3.2 there. Don't know if it matters. My request has attribute NIDs 1.3.6.1.4.1.331.13.2.2 and 1.3.6.1.4.1.331.13.2.3. Again, I have no idea what they mean - and OpenSSL can't even print the first attribute. > Then import generated X509 as Personal certificate and as Other People > certificate.(AcceptPKCS7,InstallPKCS7) Could you send me sample code? I know how to return certs for Netscape, but not MSIE. > Received Certificate works for authenication and signing > but [not encryption]. What are the permissions on the cert you actually produced? Is it possible that you somehow stripped permissions? ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
