Thanks for your brain power, but I found a combination that works. I
used the Mozilla 1.6 browser to create a new profile and load the
PKCS#11 provider, used the command line tools from NSS 3.9 to add the
CA's self signed certificate to the database, and now all of the
certificates and their signatures will verify (via certutil.exe -V).
Previously I used modutil.exe to create the database files and load the
PKCS#11 provider, but certutil -V wouldn't verify the signature on any
certificate whenever the smart card was plugged in.
_______________________________________________
mozilla-crypto mailing list
[EMAIL PROTECTED]
http://mail.mozilla.org/listinfo/mozilla-crypto
- certutil, certificate verification, and smart cards melton
