Pierre De Boeck wrote:
>
> In IE 4.0, I can connect successfully
> to my https server as far as I use only
> server authentication. When I use client
> authentication, IE shows a list box of
> client certificates that I can choose. The
> problem is that the list is empty, although
> I see my personal certificate in the content tab.
>
This is a server config problem. You need to install the *client* CA
into the server so it can tell the browsers that that CA is acceptable.
> In Netscape 4.5, even the simple server authentication
> fails. Netscape says that the certificate cannot be used
> for that application.
>
Probably inappropriate extensions in the server certificate. For SSL
server you need nsCertType set to 'server' which is 0x40 under SSLeay or
just commented out.
Steve.
--
Dr Stephen N. Henson. http://www.drh-consultancy.demon.co.uk/
Personal Email: [EMAIL PROTECTED]
Senior crypto engineer, Celo Communications: http://www.celocom.com/
Core developer of the OpenSSL project: http://www.openssl.org/
Business Email: [EMAIL PROTECTED] PGP key: via homepage.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
