Guillaume Tamboise wrote: [...]
Does this interoperability include the cases where you force OCSP to use a specific URL and signer? (in Firefox, under Advanced, OCSP, Use OCSP to validate all certificates using this URL and signer) FireFox gives me an "Error establishing an encrypted connection to [website]. Error Code: -8075." in that case.I have not tried to specify the OCSP URL in the certificate yet.
It seems like a trust-related error, but I should check the error codes from
firefox... I successfully have been able to have firefox to check certificates
by using the static configuration (fixed URL configuration) with a very simple
demo PKI so it should be working.
--
Best Regards,
Massimiliano Pala
--o------------------------------------------------------------------------
Massimiliano Pala [OpenCA Project Manager] [EMAIL PROTECTED]
Tel.: +39 (0)11 564 7081
http://security.polito.it Fax: +39 178 270 2077
Mobile: +39 (0)347 7222 365
Politecnico di Torino (EuroPKI)
Certification Authority Informations:
Authority Access Point http://ca.polito.it
Authority's Certificate: http://ca.polito.it/ca_cert/en_index.html
Certificate Revocation List: http://ca.polito.it/crl02/crl.crl
--o------------------------------------------------------------------------
smime.p7s
Description: S/MIME Cryptographic Signature
