Hello all. I have installed a Verisign 128-bits server-certificate into a Java keystore to be used by Orion 1.5.2. I encounter no problem at all in generating keys, generating a csr or importing the certificate from Verisign and Orion runs fine. (I did use the ssl-guide) BUT..... connecting to the secure site with OTHER browser than IE 5.5 or IE (5.0) with 128-bits encryption pack fails!! (netscape not tested) For example. IE 5.0 (not with 128-bits) says "the page can not be displayed" with IE 4.0 I get a message box stating "An error occured in the secure chanel support". The browser should not be the problem. Verisign states IE 4.0 or later will work. It does really work to connect with IE 4.0+ to other sites with 128-bits servercertificates. Connecting with openssl or other tool for getting the servercertificate shows that orion sends the installed certifikate information and all seems to be ok. If I put the flag -Djavax.net.debug=all and run orion all seem ok until I try to connect to my secure site with an older browser (IE 5.0). I see in the end of the information printed out a "handshake_fail" and all stops with the browser showing information above. Any have seen this behaviour before and anyone have a idea how to resolve this? 40-bits certificates (selfmade or for test) works just fine. I appreciate all information. Thanks in advance. Tomas __________________________________________________ Do You Yahoo!? Get personalized email addresses from Yahoo! Mail http://personal.mail.yahoo.com/
