* Bernhard Froehlich wrote:
Shaun Lipscombe wrote:
[...]
One last question... it's to do with client certificates. If I have two
websites, say, and they both require client certificates signed by the
CA ABC. Ltd there is nothing stopping a client certificate being used
for authorization
On 2005.01.13 at 13:55:37 +0100, Dr. Stephen Henson wrote:
It doesn't. You can do that of course but the preferred technique is the same
as every other environment: create a private key on the microsoft box, sign a
request with it, send request to the CA and install the resulting certificate.
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Victor B. Wagner wrote:
| On 2005.01.13 at 13:55:37 +0100, Dr. Stephen Henson wrote:
|
|It doesn't. You can do that of course but the preferred technique is
the same
|as every other environment: create a private key on the microsoft box,
sign a
On 2005.01.14 at 17:02:51 +0300, Vsevolod Stakhov wrote:
|For MSIE you can use Xenroll for that.
| BTW, it is not clear for me how to create DSA certificates from xenroll.
| (really I oo need GOST94 certificates, not DSA)
You can use such kind of script for IE:
I see that this script does
On Fri, Jan 14, 2005, Victor B. Wagner wrote:
On 2005.01.14 at 17:02:51 +0300, Vsevolod Stakhov wrote:
|For MSIE you can use Xenroll for that.
| BTW, it is not clear for me how to create DSA certificates from xenroll.
| (really I oo need GOST94 certificates, not DSA)
You can use such
On 2005.01.14 at 17:38:29 +0100, Dr. Stephen Henson wrote:
Does a GOST CSP exist?
At least two of them. One is developed by CryptoPro, and other by
CryptoCom. There is third major vendor of certified Russian cryptography
on the market, but I don't know if they have their own CSP
On Fri, Jan 14, 2005, Victor B. Wagner wrote:
On 2005.01.14 at 17:38:29 +0100, Dr. Stephen Henson wrote:
Does a GOST CSP exist?
At least two of them. One is developed by CryptoPro, and other by
CryptoCom. There is third major vendor of certified Russian cryptography
on the market,
I have used openssl to setup a CA to sign site certificates and client
certificates. All is working just great , however I have a couple of
questions to ask so that I dont go insane.
Why is it that a Microsoft box requires SSL certificates be imported
from a PCKS12 file when all other operating
On Thu, Jan 13, 2005, Shaun Lipscombe wrote:
I have used openssl to setup a CA to sign site certificates and client
certificates. All is working just great , however I have a couple of
questions to ask so that I dont go insane.
Why is it that a Microsoft box requires SSL certificates be
* Dr. Stephen Henson wrote:
On Thu, Jan 13, 2005, Shaun Lipscombe wrote:
Why is it that a Microsoft box requires SSL certificates be imported
from a PCKS12 file when all other operating systems and software are OK
with a PEM certificate?
It doesn't. You can do that of course but the
On Thu, Jan 13, 2005, Shaun Lipscombe wrote:
* Dr. Stephen Henson wrote:
On Thu, Jan 13, 2005, Shaun Lipscombe wrote:
Another question I have is I have seen documentation on the net showing
CSR's being generated that catenate the private key and PEM encoded
certificate request
Shaun Lipscombe wrote:
[...]
One last question... it's to do with client certificates. If I have two
websites, say, and they both require client certificates signed by the
CA ABC. Ltd there is nothing stopping a client certificate being used
for authorization to access both sites even though those
12 matches
Mail list logo