On Tue, Mar 11, 2003, Soo Hom wrote: > A box pops up stating" > "The server you are connected to is using a security certificate > which has expired or is not yet valid. Do you want to continue using this > server?" > > It's annoying in that it pops up every few minutes. > >
Check the time the PC is set to and the times of the server and CA certificatess with: openssl x509 -in cert.pem -noout -dates If these all seem OK then it may be a validity nesting issue. The CA certificates times should cover the period of any certificates it issues with MS validity checking. That is notBefore(CA) must be earlier than notBefore(server) and notAfter(CA) must be after notAfter(server). Steve. -- Dr Stephen N. Henson. Core developer of the OpenSSL project: http://www.openssl.org/ Freelance consultant see: http://www.drh-consultancy.demon.co.uk/ Email: [EMAIL PROTECTED], PGP key: via homepage. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
