Re: Capturing X509 certificate and storing them using the Windows Certificates API

[Rajeshwar Singh Jenwar]

Hi
Just try this.
Generating Certificates for Windows Clients
When generating certicates forWindows clients you have to make sure
that the lifetime
of the certicate lies within the lifetime of the CA. If the lifetime
of the certicate
exceeds the lifetime of the CA, the windows client will not accept the
certicate!
The easiest way to transfer certicates to a windows box is by using the PKCS#12
exchange format. Openssl can reformat the certicates to this format:
$ openssl pkcs12 -export -inkey key.pem -in cert.pem -certfile
cacert.pem -out export.p12

enjoy.

On 7/7/05, Pj <[EMAIL PROTECTED]> wrote:
> Hi all,
> 
> My application needs to support Non-repudiation using X509 certificates ala
> AS2.
> 
> Has anyone had the pleasure of storing X509 client and server certificates
> in the windows certificate registry / database? And if so, whats the best
> place to start to convert X509 to the windows format?
> 
> Thanks!
> Pj.
> 
> --
> No virus found in this outgoing message.
> Checked by AVG Anti-Virus.
> Version: 7.0.323 / Virus Database: 267.8.9/42 - Release Date: 6/07/2005
> 
> 
> ______________________________________________________________________
> OpenSSL Project                                 http://www.openssl.org
> User Support Mailing List                    openssl-users@openssl.org
> Automated List Manager                           [EMAIL PROTECTED]
>
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    openssl-users@openssl.org
Automated List Manager                           [EMAIL PROTECTED]