Hector Jimenez Pensado wrote:
>
> > >
> > > 5. I also convert the demoCA/cacert.pem to PKCS#12:
> > > openssl pkcs12 -export -in demoCA/cacert.pem -inkey
> > private/cakey.pem -name
> > > "MY_ORG CA" -certfile demoCA/cacert.pem -out thecacert.pfx
> > >
> >
> > DO NOT DO THIS! If you do this with
> >
> > 5. I also convert the demoCA/cacert.pem to PKCS#12:
> > openssl pkcs12 -export -in demoCA/cacert.pem -inkey
> private/cakey.pem -name
> > "MY_ORG CA" -certfile demoCA/cacert.pem -out thecacert.pfx
> >
>
> DO NOT DO THIS! If you do this with users you end up giving them the CA
> private key
Hector Jimenez Pensado wrote:
>
> Hi all,
>
> 5. I also convert the demoCA/cacert.pem to PKCS#12:
> openssl pkcs12 -export -in demoCA/cacert.pem -inkey private/cakey.pem -name
> "MY_ORG CA" -certfile demoCA/cacert.pem -out thecacert.pfx
>
DO NOT DO THIS! If you do this with users you end up gi
Hi all,
I posted the same problems a few weeks back, I have only
succesfully installed both the CA and the client certificate
in both Netscape and MSIE 5 (Just follow the PKCS#12 FAQ):
FOR THE CA:
1. Went to a new directory and did: CA.sh -newca. This created a demoCA
directory
that has the C