Thanks Andreas and Martijn, Andreas is right. It is indeed an end-user certificate (subject starts with "EMAILADDRESS=").
Best regards, Perry ---------------------------------------------------------------------- Message: 1 Date: Wed, 25 Apr 2012 12:41:49 +0200 (CEST) From: Perry Peeters <[email protected]> Subject: Re: [Djigzo users] Comodo secure email certificate To: [email protected] Message-ID: <195907d3-a5d8-4acb-8c04-0711bef0f1a7@deolinux1> Content-Type: text/plain; charset=utf-8 Thanks Martijn, Comodo root and intermediate were included in the p7b's of your site. After importing them into the root and certificates store the warning message disappeared. The CA column still shows "false", I've already tried to delete and import the (end-user) certficate again but it still shows "false". Is CA "false" correct for end-user certificates ? Thanks, Perry ---------------------------------------------------------------------- Message: 1 Date: Wed, 25 Apr 2012 08:43:51 +0200 (CEST) From: Perry Peeters <[email protected]> Subject: [Djigzo users] Comodo secure email certificate To: [email protected] Message-ID: <617d4b17-93a7-46eb-acb6-c724b8552dea@deolinux1> Content-Type: text/plain; charset=utf-8 After buying a secure email certificate from Comodo I imported the certificate into Djigzo. The certficate shows up with the following message in the Info column: "Error building certPath. No issuer ce..." Also CA shows "false" What caused this and how can we get this resolved ? ------------------------------ Message: 2 Date: Wed, 25 Apr 2012 08:52:52 +0200 From: Martijn Brinkers <[email protected]> Subject: Re: [Djigzo users] Comodo secure email certificate To: [email protected] Message-ID: <[email protected]> Content-Type: text/plain; charset=ISO-8859-1; format=flowed On 04/25/2012 08:43 AM, Perry Peeters wrote: > After buying a secure email certificate from Comodo I imported the certificate > into Djigzo. > The certficate shows up with the following message in the Info column: > "Error building certPath. No issuer ce..." > Also CA shows "false" > What caused this and how can we get this resolved ? Did you install the Comodo root and intermediate certificate? The warning "no issuer cert.." is shown if the certificate chain (i.e., the trust chain from certificate to a trusted root) is not complete. You can import the p7b files with some roots and intermediate certificates from http://www.djigzo.com/downloads.html (see certificates). The intermediates need to be imported into the certificates store and the roots into the root store. I'm not sure whether the Comodo root and intermediate certificate(s) are included with the p7b's though. Alternatively you can export the chain from the system on which the Comodo certificate is stored and import the chain into DJIGZO. Kind regards, Martijn Brinkers ------------------------------ _______________________________________________ Users mailing list [email protected] http://lists.djigzo.com/lists/listinfo/users End of Users Digest, Vol 35, Issue 7 ************************************ ------------------------------ Message: 2 Date: Wed, 25 Apr 2012 12:49:18 +0200 From: [email protected] Subject: Re: [Djigzo users] Comodo secure email certificate To: [email protected] Message-ID: <[email protected]> Content-Type: text/plain; charset=utf-8; format=flowed; DelSp=Yes Zitat von Perry Peeters <[email protected]>: > Thanks Martijn, > > Comodo root and intermediate were included in the p7b's of your site. > After importing them into the root and certificates store the > warning message disappeared. > The CA column still shows "false", I've already tried to delete and > import the (end-user) certficate again > but it still shows "false". > Is CA "false" correct for end-user certificates ? Yes, because end-user certificates are indeed not a root-CA. Regards Andreas ------------------------------ Message: 3 Date: Wed, 25 Apr 2012 13:17:46 +0200 From: Martijn Brinkers <[email protected]> Subject: Re: [Djigzo users] Comodo secure email certificate To: [email protected] Message-ID: <[email protected]> Content-Type: text/plain; charset=ISO-8859-1; format=flowed On 04/25/2012 12:41 PM, Perry Peeters wrote: > Thanks Martijn, > > Comodo root and intermediate were included in the p7b's of your site. > After importing them into the root and certificates store the warning message > disappeared. > The CA column still shows "false", I've already tried to delete and import > the (end-user) certficate again > but it still shows "false". > Is CA "false" correct for end-user certificates ? Can you send me your Comodo certificate (i.e., the .cer file) privately (to [email protected]). It might be that Comodo is using a different intermediate certificate now which is not included with the provided .p7b from the website. Kind regards, Martijn Brinkers ------------------------------ Message: 4 Date: Wed, 25 Apr 2012 13:51:48 +0200 From: [email protected] Subject: Re: [Djigzo users] Comodo secure email certificate To: [email protected] Message-ID: <[email protected]> Content-Type: text/plain; charset="iso-8859-1" Zitat von Martijn Brinkers <[email protected]>: > On 04/25/2012 12:41 PM, Perry Peeters wrote: >> Thanks Martijn, >> >> Comodo root and intermediate were included in the p7b's of your site. >> After importing them into the root and certificates store the >> warning message disappeared. >> The CA column still shows "false", I've already tried to delete and >> import the (end-user) certficate again >> but it still shows "false". >> Is CA "false" correct for end-user certificates ? > > Can you send me your Comodo certificate (i.e., the .cer file) privately > (to [email protected]). It might be that Comodo is using a different > intermediate certificate now which is not included with the provided > .p7b from the website. Correct me if i'm wrong but the CA column should be "false" for end-user certificates in the certificates panel, no? Only in the root panel the CA should be true?? Regards Andreas -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 6178 bytes Desc: S/MIME Cryptographic Signature Url : http://lists.djigzo.com/pipermail/users/attachments/20120425/d9c2dd0c/attachment-0001.bin ------------------------------ Message: 5 Date: Wed, 25 Apr 2012 14:11:44 +0200 From: Martijn Brinkers <[email protected]> Subject: Re: [Djigzo users] Comodo secure email certificate To: [email protected] Message-ID: <[email protected]> Content-Type: text/plain; charset=ISO-8859-1; format=flowed On 01/-10/-28163 08:59 PM, [email protected] wrote: > Zitat von Martijn Brinkers <[email protected]>: > >> On 04/25/2012 12:41 PM, Perry Peeters wrote: >>> Thanks Martijn, >>> >>> Comodo root and intermediate were included in the p7b's of your site. >>> After importing them into the root and certificates store the warning >>> message disappeared. >>> The CA column still shows "false", I've already tried to delete and >>> import the (end-user) certficate again >>> but it still shows "false". >>> Is CA "false" correct for end-user certificates ? >> >> Can you send me your Comodo certificate (i.e., the .cer file) privately >> (to [email protected]). It might be that Comodo is using a different >> intermediate certificate now which is not included with the provided >> .p7b from the website. > > Correct me if i'm wrong but the CA column should be "false" for end-user > certificates in the certificates panel, no? Only in the root panel the > CA should be true?? An intermediate certificate is also a CA so intermediate certificates also have CA column to be true. End-user certificates should always have CA to be false. Kind regards, Martijn Brinkers ------------------------------ Message: 6 Date: Wed, 25 Apr 2012 14:27:35 +0200 From: [email protected] Subject: Re: [Djigzo users] Comodo secure email certificate To: [email protected] Message-ID: <[email protected]> Content-Type: text/plain; charset="iso-8859-1" Zitat von Martijn Brinkers <[email protected]>: > On 01/-10/-28163 08:59 PM, [email protected] wrote: >> Zitat von Martijn Brinkers <[email protected]>: >> >>> On 04/25/2012 12:41 PM, Perry Peeters wrote: >>>> Thanks Martijn, >>>> >>>> Comodo root and intermediate were included in the p7b's of your site. >>>> After importing them into the root and certificates store the warning >>>> message disappeared. >>>> The CA column still shows "false", I've already tried to delete and >>>> import the (end-user) certficate again >>>> but it still shows "false". >>>> Is CA "false" correct for end-user certificates ? >>> >>> Can you send me your Comodo certificate (i.e., the .cer file) privately >>> (to [email protected]). It might be that Comodo is using a different >>> intermediate certificate now which is not included with the provided >>> .p7b from the website. >> >> Correct me if i'm wrong but the CA column should be "false" for end-user >> certificates in the certificates panel, no? Only in the root panel the >> CA should be true?? > > An intermediate certificate is also a CA so intermediate certificates > also have CA column to be true. End-user certificates should always have > CA to be false. My impression was, that the question of the OP was about end-user certificate and not the intermediate, but i have not closely monitored the thread. Regards Andreas -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 6178 bytes Desc: S/MIME Cryptographic Signature Url : http://lists.djigzo.com/pipermail/users/attachments/20120425/f780a8a0/attachment.bin ------------------------------ _______________________________________________ Users mailing list [email protected] http://lists.djigzo.com/lists/listinfo/users End of Users Digest, Vol 35, Issue 8 ************************************ _______________________________________________ Users mailing list [email protected] http://lists.djigzo.com/lists/listinfo/users
