1) When I return to the public site to retreive my cert I get a potential scripting violation warning then a message saying installtion error(this occurs if the certificate is alsready installed also).
The error is normal if you already installed the certificate because the errorcodes from Microsoft are sometimes a little bit poor and sometimes there are simply no errorcodes because some functions have only return values in C but not in VBS.
2) If I look under valid certs it is listed and I can download it to a file but when I try and install it to IIS with the key generator I get a message stating the certificate is invalid with a code CAP12 error = 80093005
http://support.microsoft.com/default.aspx?scid=kb%3Ben-us%3B269290
You have to convert your certificate. You can do this for example via:
openssl x509 -inform DER -in your_cert.der -outform PEM -out your_cert.pem
Perhaps you need another suffix than pem (crt or b64).
3) I have also requested a cert using the key generator on the pub site. 4) Gain I am unbale to retreive the signed cert from the public site using the serical number. 5) If I enter the ra site and cut and paste the cert and private key into pair files I can import them into IIS but always get an error message about the wrong password (i have tested it many times to make sure I have the correct password)
Did you try to enter an empty passphrase? OpenSSL has bug which removes the passphrase during conversions from SSLeay to PKCS#8 and vice versa without any warning.
Any Ideas.
No, but www.microsoft.com has an excellent search engine ;)
http://support.microsoft.com/default.aspx?scid=kb%3Ben-us%3B269290
Michael -- ------------------------------------------------------------------- Michael Bell Email: [EMAIL PROTECTED] ZE Computer- und Medienservice Tel.: +49 (0)30-2093 2482 (Computing Centre) Fax: +49 (0)30-2093 2704 Humboldt-University of Berlin Unter den Linden 6 10099 Berlin Email (private): [EMAIL PROTECTED] Germany http://www.openca.org
------------------------------------------------------- This SF.net email is sponsored by: Etnus, makers of TotalView, The best thread debugger on the planet. Designed with thread debugging features you've never dreamed of, try TotalView 6 free at www.etnus.com. _______________________________________________ Openca-Users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/openca-users
