Thanks Dave for explanation.
One doubt regarding sentence " If a subjectAltName extension of type dNSName
is present, that MUST
be used as the identity(RFC 2818)"
What does this line means ?
Does it says if a certificate have different CN in issuer & subject field
but SubAltname: x.x.x.x which m
> From: owner-openssl-us...@openssl.org On Behalf Of Mr.Rout
> Sent: Saturday, 03 December, 2011 02:56
> My TLS client can validate both CN and SN & i need to test both the
> scenario.
>
> I don't know how to create certificate with "subjectAltName
> extension" using openssl commands.
>
> In th
Dear All,
My TLS client can validate both CN and SN & i need to test both the
scenario.
I don't know how to create certificate with “subjectAltName extension”
using openssl commands.
In the RFC-2818 , there are two ways of Certificate Validation for Host name
1) CN (Common Name)
2) S
dear Rick,
so happy to receive your help, and after i imported
the CA root cert into netscape, the signtext()
function works! but it also return a warning
window like that:
Waring:
Name:textForm
Class:XmTextField
Character'
',not supported in font. Discarded.
sorry to bother you again, but how
There's several guides for getting certs into the client (Netscape or IE).
Check out the relevant sections at:
http://www.ultranet.com/~fhirsch/Papers/cook/ssl_cook.html
(There's probably more updated ones, but the above worked for me.)
Once the user cert AND associated CA cert are in the Netscap
