> The browsers are not complaining, that the certificate chain is
> incomplete.
>
> I hope i did not bother You,
You did not bother me at all :). We have our own CA structure in which a
PCA certifies CAs that certify end-users. I'm still having trouble creating
a correct chain for clients. Especially IE 5.0 keeps complaining about the
chain being incorrect because the certificate of our office-ca has a
validity date exceeding the validity of the PCA certificate. No problem
imho, but a problem to IE. You did not come across this one?
Jan
--
alive=true
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
