Hello, > Trying to use OpenSSL 0.9.8 on a VMS system. Specifically, I'm having > problems using OpenSSL underneath OpenLDAP to talk to another non-OpenLDAP > system and can't get THAT to work. It's been suggested that I use OPENSSL > S_CLIENT to ensure my basic certificates are correct. > > My CA is another system (Windows) and I requested it to create the trusted > root certificate in PKCS7 format, which I copied to my VMS system. I can > use OPENSSL PKCS7 to view the package contents, and it contains a single > certificate. I then tried to do an OPENSSL VERIFY on that package, and it > keeps coming up with "NO START LINE" and "EXPECTING: TRUSTED CERTIFICATE" > errors. Finally, I tried "openssl s_clienit -connect <mydomain>:636 > -certfore der -CAfile <pkcs7 package> > and it comes up with the following: s_client uses PEM certificate list, try to convert this: $ openssl pkcs7 -in CA.p7b -inform der -print_certs > CA.pem and then use CA.pem in CAfile parameter.
Best regards, -- Marek Marcola <[EMAIL PROTECTED]> ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
