> Zaki Akhmad wrote: > I cannot find the "certificate and keypair" option.
The "keypair option" is only available, if the key is generated on the openca server. Normally, a browser key is generated in the browsers crypto store, eg. Mozillas "software security device", or IE's "private certificate store". That's where the key should reside. When you plan to export it as pkcs12, you should mark the key as extractable while generating. This option is available to all browser crypto stores. However, when you created it on a smartcard, there could be no way to extract it (and this is the sense of a private key stored on smartcards) Generally, the private key should ALWAYS kept private. That means, generation and storage on clients side is mandatory for high security. Regards Ralf ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys -- and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Openca-Users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openca-users
