After re-reading this thread, I noticed that in your original post, you wrote:
when I import and check the "purposes" checkbox, the CA cert seems to get imported, but all the purposes end up bing unchecked.
So, the cert IS being imported, and your own issue is with trust flags. PSM 1.x had a trust flags editor. After the cert is imported, you should be able to edit the flags as you wish.
Are you certain that the cert you're examining (with apparently wrong trust flags) is exactly the cert you think it is, and not (say) a very similar one that isn't quite identical?
Is the cert you tried to import into IE identical to the one you imported into PSM? This may be the first time someone reported that a cert DID work with netscape and NOT with IE. :)
Can you post the URL for downloading that cert? If not, can you email me a copy of your cert7.db file (the one with the cert in it with the wrong trust flags)? You'd have to demunge my email address, but you can do that. You'll also have to tell me which cert in the file is the one with the troubles.
BTW, my only interest here is to see if there'sa legitimate cert that gives troubles to modern PSM/NSS software. There's no way that any new PSM 1.x will be created or patched. NSS has some command line tools that might be able to help you if the only problem is with the trust flags.
-- Nelson B
_______________________________________________ mozilla-crypto mailing list [EMAIL PROTECTED] http://mail.mozilla.org/listinfo/mozilla-crypto
