Michael Sierchio wrote: > > Sharkey, Aoife wrote: > > Hi > > > > I am having aproblem where the server is unable to verify the client > > certificate I created. > > The Server is running IIS and is listening on port 443 for SSL traffic. > > > > > >>here is an example of the ssldump file > > I didn't see anything here that suggests that the server is requesting > client auth. There was apparently no 'Certificate request' component > to the handshake, in which the server enumerates the DNs of acceptable > CAs and client cert types. I'd conclude that the server isn't > configured to need client auth. > This is also my opinion, but after configuring (correctly ...) IIS to request client authentication, and inserting my CA in the list of CA trusted by IIS, the server doesn't request client certificate.
Anyone has resolved this problem ? Maybe the extensions are wrong in the root or the server certificate ? My CA is published on http://ca.unito.it and a sample server certificate is on https://ca.unito.it thanks -- Dott. Sergio Rabellino Technical Staff Department of Computer Science University of Torino (Italy) Member of the Internet Society http://www.di.unito.it/~rabser Tel. +39-0116706701 Fax. +39-011751603 ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
