Hi Wyatt,
You cannot import any certificate to IE using MIME types
application/x-x509-ca-cert. I suggest you follow the way of MS Certificate
server importing root certificate. It send the certificate as a file to the
browser, then user save those file and import it manually. I haven't found
any automatic way to import root cert to IE unless you import it in
certificate chain. I can give you some sample code if you wish.
Regards,
Benny Chandra
-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Wyatt, Anthony
Sent: 09 Agustus 2000 9:31
To: '[EMAIL PROTECTED]'
Subject: Problem with root cert on web page.
Hi,
I have a Netscape CA. I can get the root certificate off of it
without any problems, but I don't want anyone else in the world to have
access to it. So we thought we'd put the cert on our web page for people to
collect. It has worked in the past with the following perl script:
# Open and load the certificate file.
open(FP, "</usr/local/ssl/test.der");
$cert = '';
$cert .= $_ while (<FP>);
close(FP);
$len = length($cert);
# Send the certificate to the browser.
print "Content-type: application/x-x509-ca-cert\n";
print "Content-length: $len\n";
print "\n";
print $cert;
The test.der certificate was created with openssl, and will import
into Netscape4.6 and IE5.5. The Netscape CA binary format (appears to be
der) will import into Netscape but not IE5.5. IE complains: "invalid
Security Certificate file".
Does anyone know how I can use openssl to change it to a valid
certificate file for IE5.5?
Thanks,
Anthony Wyatt
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
