Hi Felix Felix Ingram wrote: > 2008/10/1 vinni rathore <[EMAIL PROTECTED]>: >> Hello, >> >> As your problem says that you are getting "local issuer certificate" >> problem that means that client certificate is signed with a particular >> CA certificate and that certificate is not found at the time of >> Handshaking.. so please confirm that your client is also verifying the >> CA certificate loading. > > Ah. That makes sense. Unfortunately I've only been provided with the > client certificate and not those used for signing. When I view the > site with IE it appears to be ignoring the client cert chain (when I > view the certificate it shows one of the intermediates as missing) and > presents the client certificate to the server. > > Is there a way to avoid checking the chain with s_client? Surely I > just need to be throwing the certificate at the server and it will > decide whether to trust it? > > Thanks for the help. > I believe that if you use the -verify 0, this will do what you want.
Patrick. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
