:03 James Chase wrote:
I simplified the issue a bit in order to try and understand what is going
on here and found that the SSL certificate that Network Solutions is
providing, along with the intermediate chain file cannot be verified by
newer installs of Firefox.
Hi James. That seems
DSpoJSSy8ieH7U4/kuZE79tAWQw5EvgfyL6fpMLHvNT63G6bW7ekRuSEjA0njqpC
y/Bbi7gDW2FzQ8Y0gMyYKtHVTBFz7vyr2hwB37bUWq009kMRVUhhHYpF6fAnByZC
phBXxfqQaC1XmE7tnyt8QLI2NBXDpDTTMtaEcU0VKnsb6X0p+u1r6S+/I2pjan9m
G0pID0nsP9iH2xyG+8F+Fxcxt7ve0T2YGYfgMg==
-END CERTIFICATE-
On Tue, Apr 26, 2011 at 8:19 AM, James Chase
telling them their was something wrong with their files and they
just kept saying it was my fault and they will bill me $120/hour to fix it.
On Tue, Apr 26, 2011 at 8:19 AM, James Chase chase1...@gmail.com
wrote:
Well my results are quite different, and I guess point to my p12 not
being
I got the the correct certificate chain from my Windows 7 box. Microsoft
tends to update its trusted CA certificates store more quickly and regularly
than Mozilla or Linux distros: the latest update was last month on March
23rd 2011.
It is sad that even Network Solutions guys are not aware
-in www.example.com.csr -key www.example.com.key
verify OK
-BEGIN CERTIFICATE REQUEST-
CERTIFICATE DATA HERE
-END CERTIFICATE REQUEST-
On Sat, Apr 23, 2011 at 4:41 PM, James Chase chase1...@gmail.com wrote:
I am using the same system -- I have tried with last years chain file as
well. The only thing
-- I have never had so much trouble
with an SSL certificate and am not an expert by any means.
Anyone have any thoughts? I called NS earlier in this process and they said
not our problem but perhaps I will try again.
On Mon, Apr 25, 2011 at 11:01 AM, James Chase chase1...@gmail.com wrote:
I did
openssl verify -CAfile chain.crt my.cert.crt
IF you have installed some 'common' or 'standard' CAs in your
system's default truststore -- or if you're using a packaged
build that does so for you -- turn that off to make sure it
doesn't silently 'fill in' certs for you, something like:
I have done this multiple years in a row with the exact same process but
now I get the following error when I try to create my SSL:
openssl pkcs12 -export -chain -CAfile cachain.crt -out my.domain.com.p12
-inkey my.domain.com.key -in MY.DOMAIN.COM.crt
Error unable to get local issuer
have always used the -chain and -CAfile options together when creating
p12's.
On Sat, Apr 23, 2011 at 12:32 PM, Crypto Sal crypto@gmail.com wrote:
On 04/21/2011 06:51 PM, James Chase wrote:
I have done this multiple years in a row with the exact same process but
now I get the following
I have done this multiple years in a row with the exact same process but now
I get the following error when I try to create my SSL:
openssl pkcs12 -export -chain -CAfile cachain.crt -out my.domain.com.p12
-inkey my.domain.com.key -in MY.DOMAIN.COM.crt
Error unable to get local issuer certificate
10 matches
Mail list logo