Newbie question here similar to what someone else asked way back in October around client side support for cert7.db formatted files. To add another trick, I am running in a situation where I will use a self-signed cert and self-signed Root CA for a demo domain that I have.
I have an application (OK, it's the Solaris 9 SSL-enabled Native LDAP client for native OS authentication) that requires a copy of the server's root CA and server's SSL cert via the following three files : cert7.db, key3.db and secmod.db .
All 'current' NSS and NSPR releases (3.7.x at least and above) only issue cert8.db files.
So, two questions please :
* Is it possible to convert a cert8.db into a cert7.db , or at least extract what I need out of it?
* What version of NSS (and NSPR) is needed to generate cert7.db formatted files ?
Also, indeed older versions of Netscape generate these files as well, but how do you get the root CA into the browser's list ?
* Do you use 'certutil -A' with a copy of an existing cert7.db file, or can you import the root CA from disk if it's in the correct format (which format? PKCS #12, DER or what?)
Thanks! Please reply ASAP and CC my E-mail address.
Mark Thacker [EMAIL PROTECTED]
_______________________________________________ mozilla-crypto mailing list [EMAIL PROTECTED] http://mail.mozilla.org/listinfo/mozilla-crypto
