Perhaps someone can help me out with this. I am currently writing an SSL client using OpenSSL 0.9.5a, although until recently I was using SSLeay 0.9.0b. I am connecting to a Microsoft IIS 4 server on NT 4.0sp6a. Client certificates are required on the site, and the site trusts the CA that issued the cert (verisign). The behavior I am experiencing is the following: 1) connecting to this server using SSLeay after calls to SSL_CTX_use_RSAPrivateKey_file() and SSL_CTX_use_RSAPrivateKey_file() results in http error # 403.7 (client cert required). 2) connecting to Win2k IIS 5.0 correctly serves the page that I am trying to view 3) (*here's the rub*) connecting to IIS 4.0 w/ Netscape Navigator or IE and presenting the *same cert* will cause the server to display the page correctly in the browser *AND IN SSLEAY* until the server is rebooted or the services are stopped and restarted. This means that if I connect to the server using my client it fails, then after connecting with Netscape successfully, my client can then subsequently connect correctly. Does anybody have any information on this problem and what might be causing it. I cannot find any information on this, but I have to assume that this is Microsoft problem, but I cannot verify. I would really appreciate any help. Thanks, --------- Ed Moyle Private Client Security and Risk Management Merrill Lynch ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
