I have created a CA and an intermediate CA. I use the intermediate CA to create self-signed s/mime certificates for end users which works fine. I need to be able to create .pfx files form those end user certificates and include the CA chain into the pfx file. Currently the command I use to export the user certificates to .pfx is as follows:
openssl pkcs12 -export -out someone.pfx -inkey someone.key -in someone.crt -passout:somepassword
This works fine but when i import the .pfx file into my windows sytem, the certificate chain is not there and I have no way of trusting the certificate. How would I go about including the certificate chain into the pfx file?
thanks in advance. ------------------------------------------------------------------------
smime.p7s
Description: S/MIME Cryptographic Signature
