On Thu, Oct 05, 2006, Dan O'Reilly wrote: > At 12:48 AM 10/5/2006, Bernhard Froehlich wrote: > >Dan O'Reilly wrote: > >>Trying to test certs before moving on to LDAP tests. The certs were > >>obtained from a CA running on a MS box. Here's what happens: > >> > >>openssl s_client -connect adtest:636 -cert foo.pem "-CAfile" homeca_ce > >>rt_chain.p7b
The above command is the problem. You can't use a PKCS#7 (.p7b) file directly in the -CAfile command. > > openssl pkcs7 -inform der -in homeca_cert_chain.p7b -noout -print_certs > -text Use the above command to say the certificate to a PEM file. For exampl home_ca.pem and use that file for the -CAfile. Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSSL project core developer and freelance consultant. Funding needed! Details on homepage. Homepage: http://www.drh-consultancy.demon.co.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [email protected] Automated List Manager [EMAIL PROTECTED]
