On 03/19/2015 07:18 PM, Markus Zimmermann wrote: > I have a problem with signing my mails. > > I created an internal user and imported the encryption and the > signing certificate (comodo). The Info field of the certificates > contains: "Error building certPath. No issuer certificate for > certificate in certification path found." > > I followed the steps in the manual, > > -set Locality to "internal" > > - set encrypt mode to "allow" > > - unchecked the "Only sign when encrypt" box > > > When sending a mail from the specific user to a testuser the mail is > not signed. > > Does anyone of you know, what the mistake is?
The message "Error building certPath. No issuer certificate for certificate in certification path found." means that the certificate chain is not valid, i.e., a certificate chain up to a trusted root cannot be found. Only if a certificate is trusted, will it be used for signing. There are two options 1. Make sure that chain is valid. You need to import the root certificate that issued the certificate into the root store and import any intermediate certificate into the certificates store. Since you imported the key, the intermediate certs are probably already in the certificates store. You need to check whether the root certificate is in the root store. 2. If you are unable to import a root or if you only want to trust this signing certificate, you can manually trust the signing certificate by placing it on the certificate trust list (CTL) I think option 1 is the best approach since this ensures that if you renew the certificate after it is expired it will be automatically trusted. Kind regards, Martijn Brinkers -- CipherMail email encryption Open source email encryption gateway with support for S/MIME, OpenPGP and PDF messaging. http://www.ciphermail.com Twitter: http://twitter.com/CipherMail _______________________________________________ Users mailing list [email protected] https://lists.djigzo.com/lists/listinfo/users
