Brandon Amundson wrote: > > I am trying to sign a server cert from IIS 5.0 with my CA (openssl) that > runs on my linux webserver. > > I have successfully signed the cert and move it back into IIS but when I go > to access the site, the certificate dialog > > box pops up but there are no available certificates. I would like to use > pre-existing user certificates that I have issued > > for my other site because I am going to be letting the same people have > access to the new site. Does anyone know if this is > > possible and what I am not doing correctly, (besides using MS)? I heard > something about the v3 extensions being a possible > > cause. Any thoughts? >
The FAQ gives the reason for this and some more info. What it doesn't say is how to add your CA to the trusted list of IIS. IIRC you can do this via the certificate import wizard, something like clicking on the "show physical stores" box and trusted root->local computer. You may have to the reboot. You can check using s_client to see if your CA is then sent (see FAQ). Steve. -- Dr Stephen N. Henson. http://www.drh-consultancy.demon.co.uk/ Personal Email: [EMAIL PROTECTED] Senior crypto engineer, Gemplus: http://www.gemplus.com/ Core developer of the OpenSSL project: http://www.openssl.org/ Business Email: [EMAIL PROTECTED] PGP key: via homepage. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
