Hi Manoj, I don't know this API, but I believe it complains about the fact that the certificate is self-signed.
Maybe there are some means to add the certificate to "trusted certificates", maybe it is sufficient to copy it somewhere, where your openssl looks for trusted certificates (in Linux it is usually /etc/ssl/certs/, in Windows I'm not sure, probably some folder below programs\openssl or so). If it doesn't work with self-signed certifcates at all, the openssl ca command would be a simple option to generate a few certificates signed by the self-signed one. You would put the self-signed certificate into the trusted certificates folder on the client and the server and use two other certificates in the API on the client and the server respectively. best regards, Martin ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org