This may be an interesting read for other users : it seems that the only default trusted ca for any reader is the acrobat root ca - and geotrust is the only company who can issue you such a certificate....
Thawte? Useless...Verisign? Useless... if you want that your users do not need any knowledge about verifiying - adobe *forces* you to use this issuer http://www.geotrust.com/resources/product_pdfs/pdfs/DS_TC_for_Acrobat.pdf --- Paulo Soares <[EMAIL PROTECTED]> wrote: > This is an Acrobat option, it has nothing to do with > iText. You should > ask the question in an Acrobat forum. > > Paulo > > > -----Original Message----- > > From: > [EMAIL PROTECTED] > > > [mailto:[EMAIL PROTECTED] > On > > Behalf Of Harakiri > > Sent: Tuesday, April 24, 2007 4:38 PM > > To: Post all your questions about iText here > > Subject: Re: [iText-questions] Untrusted Signature > Certificate (Chain) > > > > Is there another way ? So that an external user > does > > not have to adjust his preference ? This makes no > > sense to me - digital signature would be useless > if > > users without any technical knowledge actually > have to > > change default preference to see if a document > > signature is valid. > > > > Does the other options help ? Like : > > > > /** > > * The self signed filter. > > */ > > public static final PdfName SELF_SIGNED = > > PdfName.ADOBE_PPKLITE; > > /** > > * The VeriSign filter. > > */ > > public static final PdfName VERISIGN_SIGNED = > > PdfName.VERISIGN_PPKVS; > > /** > > * The Windows Certificate Security. > > */ > > public static final PdfName WINCER_SIGNED = > > PdfName.ADOBE_PPKMS; > > > > Does adobe have any standard trusted identities > > installed ? > > > > > > --- Paulo Soares <[EMAIL PROTECTED]> wrote: > > > > > In Acrobat 7 go to > > > Edit->Preferences->General->Security->Advanced > > > Preferences->Windows Integration. When Acrobat > is > > > installed there's no > > > windows integration, you have to explicitly set > it. > > > > > > Paulo > > > > > > > -----Original Message----- > > > > From: > > > [EMAIL PROTECTED] > > > > > > > > > > [mailto:[EMAIL PROTECTED] > > > On > > > > Behalf Of Harakiri > > > > Sent: Tuesday, April 24, 2007 4:03 PM > > > > To: [email protected] > > > > Subject: [iText-questions] Untrusted Signature > > > Certificate (Chain) > > > > > > > > Hello, > > > > > > > > im creating a field signature using a Thawte > > > > Certificate. Im using the WINCER signing > method. I > > > was > > > > under the impression that adobe reader would > use > > > the > > > > windows installed certificates for verifying > the > > > > signature. > > > > > > > > But this doesnt seem to be the case, i tried 2 > > > > different signed certificates now which are > both > > > > trusted under winxp but the reader always > tells me > > > > that its untrusted and i have to manually > trust > > > it. > > > > Adobe Reader 7 even tells me that the > signature is > > > > damaged along the untrusted certificate chain > > > (Reader > > > > 6 only says untrusted chain). > > > > > > > > Did anyone had sucess with a certificate which > is > > > > already trusted by a newly installed reader ? > > > Which > > > > issuer and which ca signed that key ? > > > > > > > > Thanks > > > Aviso Legal: > Esta mensagem é destinada exclusivamente ao > destinatário. Pode conter informação confidencial ou > legalmente protegida. A incorrecta transmissão desta > mensagem não significa a perca de confidencialidade. > Se esta mensagem for recebida por engano, por favor > envie-a de volta para o remetente e apague-a do seu > sistema de imediato. É proibido a qualquer pessoa > que não o destinatário de usar, revelar ou > distribuir qualquer parte desta mensagem. > > Disclaimer: > This message is destined exclusively to the intended > receiver. It may contain confidential or legally > protected information. The incorrect transmission of > this message does not mean the loss of its > confidentiality. If this message is received by > mistake, please send it back to the sender and > delete it from your system immediately. It is > forbidden to any person who is not the intended > receiver to use, distribute or copy any part of this > message. > > > > ------------------------------------------------------------------------- > This SF.net email is sponsored by DB2 Express > Download DB2 Express C - the FREE version of DB2 > express and take > control of your XML. No limits. Just data. Click to > get it now. > http://sourceforge.net/powerbar/db2/> _______________________________________________ > iText-questions mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/itext-questions > Buy the iText book: > http://itext.ugent.be/itext-in-action/ > __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ------------------------------------------------------------------------- This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ _______________________________________________ iText-questions mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/itext-questions Buy the iText book: http://itext.ugent.be/itext-in-action/
