> [EMAIL PROTECTED] <> scribbled on vendredi 17 mars 2006
> 11:51:
>
> > I guess that it's a second level of protection to stop you
> > when you try to install a stolen cert on your machine in MMC
> > on a Windows XP machine for example?
>
> No, to use a cert in win XP, we have to use a .p12 expo
;t
find any readable documents on its use, so I too left it blank.
I guess that it's a second level of protection to stop you when you try to
install a stolen cert on your machine in MMC on a Windows XP machine for
example?
--
Stuart Halliday
ECS Technolog
ust a matter of typing in the passwords
and the users details.
--
Stuart Halliday
ECS Technology ltd
Registered in Scotland - #212513
__
OpenSSL Project http://www.openssl.org
User
number inside, its not been updated since 1998!
Have I got the wrong file?
--
Stuart Halliday
ECS Technology ltd
Registered in Scotland - #212513
__
OpenSSL Project http://www.openssl.org
User
Ok, I've now created a .p12 file with the CA.cer and a user's .cer
I can import this into MMC and it makes no difference.
my user cert is still not trusted.
--
Stuart Halliday
ECS Technology ltd
Registered in Scotland - #212513
-Original Message-
From: Peter Sylvest
' fields are the same.
ie: 'MyServer Root Certificate Authority'.
This cert is in my Trusted Root CA store.
In my Personal store in MMC I have a cert which is labelled:
Issued by 'MyServer Root Certificate Authority' and Issued to 'Stuart
H
> When you create the user .P12 files, then include the CA certificate
> into it, i.e.
> use a certfile that contains the user cert and the self signed CA
> certificate.
> The p12 file contain thus the private key of a user, the user's X509
> certificate
> and the X509 certificate of the CA.
Th
> Its not the server cert you need in the trusted certs store - it's the
> CA root cert.
Surely that's what I've got?
I created a CA cert I thought.
__
OpenSSL Project http://www.openssl.org
Us
red.
openssl x509 -in stuarth.cer -out stuarth_certx509.pem
openssl pkcs12 -export -in stuarth_certx509.pem -inkey
ECS_CA\private\cakey.pem -out stuarth.p12
and it is stuarth.p12 which I import into mmc - Personal.
--
Stuart
