Hi Rossen,
I was able to create a chain of 3; end entity -> Subordinate CA -> Root. I
used the Netscape CA as the issuer of the entire chain.
I was able to do one-way SSL authentication with this chain. I, however,
couldn't get the Server to authenticate me for two-way authentication (even
though I can do 2-way using just the openssl utilities at the command line).
Lorrayne
Rossen Raykov wrote:
> Hi,
>
> Is it possible to create chain sertificate using regular certificate signed
> by a public CA.
> For example if I have certificate for some.mysite.com signed by Equifax
> would it be possible to ceate chained sertificate for other.mysite.com?
> I've tried some things but the result was "Can not verify CA"...
> Is that possible or one have to have a Global Certificate ID?
>
> Regards,
> Rossen
>
> ______________________________________________________________________
> Apache Interface to OpenSSL (mod_ssl) www.modssl.org
> User Support Mailing List [EMAIL PROTECTED]
> Automated List Manager [EMAIL PROTECTED]
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
