>> [...]
>> 2. removed nscerttype=ssICA
>> 3. remove nscerttype=client
>> [...]
>
>What are the reasons?
I found that if I did not do this then I could the certificates would not
work properly. After more examination I have started to commented out
nscerttype for CA certificate I generation. For the server certificate
generation I use
nscerttype = server
and for client certificate generation I use
nscerttype = client, emial
I am also now using ./CA.sh and the client certificates work in both IE5.0
and Netscape 4.5. Should I be using nscerttype for CA certificate
generation. I could not find any documentation indicating what ssICA was ?
Thanks,
Arend van der Veen
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
