Does anyone have a step-by-step guide for getting an OpenSSL root authority and a Microsoft Issuing CA working? I have it working to the point of getting the root and issuing CA created, but when I try to issue web server certificates, it doesn't work. Further research revealed that it was because the SSL server request was for 2 years, but the CA thinks it's own cert is only valid for ONE year. I don't understand this, since looking at the certificate clearly reveals that is is valid for five years.
Ok, so then by running certutil -TCAinfo, I find that it seems valid for only one year. I use the utility again to update the value in the registry to five years, but that didn't work, either. All help appreciated. Thanks. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [email protected] Automated List Manager [EMAIL PROTECTED]
