On Sat, Sep 11, 2004, Steve Ankeny wrote: Please don't post in HTML.
As to your query. This is much easier if you follow the CA.pl instructions. Some "guides" suggest you do all manner of strange and in some cases insecure things. You do *not* import the server private key and certificate into the browser nor do you create a PKCS#12 file from it. Since the server security depends on the secrecy of the private key you do *not* want to give that away! You need to trust the root CA certificate *only*. There are several ways to do this. One is to select the root CA store in MSIE. From the Tools menu select Internet Options then the Content Tab. Click on the Certificates... button and select Trusted Root Authorities and finally the Import button. Browse to the appropriate file and it should allow you to add the certificate as a trusted root CA. However there may be something else amiss because normally even if you haven't added the root CA you can still connect to a secure server with some warnings. Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSSL project core developer and freelance consultant. Funding needed! Details on homepage. Homepage: http://www.drh-consultancy.demon.co.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]