> And a question for Upul: I think that client does not actually need the > server public key certificate, only a trusted certificate for the > certificate authority that signed the server certificate. > Is that right?? >
Yes, you are right. If the certificate is obtained from a trusted certificate authority, no need to distribute the company certificate as Steve says. Need only if it is a self-generated certificate locally. Upul
