Hmm. Now that you mention it, I think I did this after asking here and it worked with most clients, but not for Eudora. Which of course we have lots of.
thanks for the correction. On Tue, Nov 07, 2006 at 12:42:18PM -0500, Paul Roub wrote: > Dan Pritts wrote: > >warning - some of the cheaper certificate authorities (godaddy is > >the one i use, i think comodo is in this category too) will use a > >"chained" certificate; they sign their sigining cert with their > >root, and then sign your cert with the signing cert. > > > > Actually, we're set up just fine with a Comodo cert -- just took an > extra step when creating the .pem file. Took months of saying "yes" to > the "do you want to accept this certificate" warnings every time I used > a new client machine before I realized. > > Basically, create the .pem file as usual -- then append the Comodo/etc. > certificate at the end. So we have: > > -----BEGIN RSA PRIVATE KEY----- > ... private key stuff here > -----END RSA PRIVATE KEY----- > -----BEGIN CERTIFICATE----- > ... our certificate data > -----END CERTIFICATE----- > -----BEGIN CERTIFICATE----- > ... Comodo chain data > -----END CERTIFICATE----- > > Works fine with Evolution, Thunderbird and Outlook IMAP clients; also > with Outlook via ipop3d. > _______________________________________________ > Imap-uw mailing list > [email protected] > https://mailman1.u.washington.edu/mailman/listinfo/imap-uw danno -- Dan Pritts, System Administrator Internet2 office: +1-734-352-4953 | mobile: +1-734-834-7224 _______________________________________________ Imap-uw mailing list [email protected] https://mailman1.u.washington.edu/mailman/listinfo/imap-uw
