You can add a "caIssuer" entry to the "authorisInformationAccesss" extension of cert B and C. Put an URL where you can download the issuing certificate (so cert C has a URL to download cert B). That way, windows can automatically fetch the intermediate certificate.
cheers Mat On Tuesday 12. November 2013 17:47:54 you wrote: > Hi there!I am trying to create my own CA, but am having some small issues:I > can create the root CA, then an intermediate CA, both of these are linked > correctly in the certification path ie. it shows that Cert B was signed by > Cert A, but when I sign a certificate with the IA (Cert B) the signed > certificate (Cert C) has no certification path and has a warning that > windows couldn't verify the certificate's origin. Is there a way I can make > all three linked? ie. Cert A->Cert B->Cert C in the certification path? Any > help would be appreciated
signature.asc
Description: This is a digitally signed message part.
