Many thanks for the information. But my query is partially answered.
Here it goes A) Doesn't client need server's self-signed certificate to validate the transmitted certificate? - Is Question A is true then how to obtain this certificate. - Also how to configure this certificate for use at the client side Client Environment is Solaris (Unix), gSOAP (C++), openssl Thanks once again for your patience Regards, Vishal Vashishta Tata Consultancy Services Mailto: [EMAIL PROTECTED] Website: http://www.tcs.com "Lindsay Hausner" <[EMAIL PROTECTED]> Sent by: [EMAIL PROTECTED] 07/02/2007 11:50 PM Please respond to openssl-users@openssl.org To <openssl-users@openssl.org> cc Subject RE: Self Signed Certificate: certificate chain verification failure -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Vishal V Sent: Monday, July 02, 2007 5:17 AM To: openssl-users@openssl.org Subject: Self Signed Certificate: certificate chain verification failure Importance: High Resending my mail with corrected information Dear All, My client program fails to establish the secure connection (https) with web server due to certificate chain verification failure. And I think the error is due to a self signed certificate. ____________________________________________________________________________ ___________________ MY UNDERSTANDING ---------------------- "During a session establishment a server always transmits its certificate to the client, and the client must validate the certificate. Therefore, if the server is using a self-signed certificate, the certificate must be made available to the client prior to the actual session establishment attempt. ____________________________________________________________________________ ___________________ QUERY --------- A) Doesn't client need server's self-signed certificate to validate the transmitted certificate? Yes. lh.. ForwardSourceID:NT00016CB6 =====-----=====-----===== Notice: The information contained in this e-mail message and/or attachments to it may contain confidential or privileged information. If you are not the intended recipient, any dissemination, use, review, distribution, printing or copying of the information contained in this e-mail message and/or attachments to it are strictly prohibited. If you have received this communication in error, please notify us by reply e-mail or telephone and immediately and permanently delete the message and any attachments. Thank you
