"GOLDING,CHARLTON (Non-HP-Corvallis,ex1)" wrote: > > Thank you. > > Sorry, I didn't detail the situation well. > > The output file can be .pem that's not a problem, the internal format needs > to be pkcs7. >
The certificate creation utilities in OpenSSL don't have an option to package a certificate in PKCS#7 format, however you can get them to create a PEM encoded certificate and then use crl2pkcs7 to convert them to PKCS#7 (PEM or DER encoded). The openssl docs describe how the certificate creation utilities work in some detail and there's a wrapper perl script CA.pl that calls the openssl utility using the most commonly used options. Steve. -- Dr Stephen N. Henson. http://www.drh-consultancy.demon.co.uk/ Personal Email: [EMAIL PROTECTED] Senior crypto engineer, Gemplus: http://www.gemplus.com/ Core developer of the OpenSSL project: http://www.openssl.org/ Business Email: [EMAIL PROTECTED] PGP key: via homepage. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
