As I wrote, I *did not* use this option in my test. What your results show is exactly what I already explained to you: the key w/o "--enabled-key-data retrieval-method,x509,raw-x509-cert" is searched by key name and you have a match in your MS Crypto store.
Aleksey Edward Shallow wrote:
Aleksey, I was able to produce exactly what you produced with the selection below of --enabled-key-data. The message is identical. What you are seeing has nothing to do with cert chain verification. It is likely related to your inability to get the "Test User 1" certificate from the crypto store given the new --enabled-key-data constraint. You still have an mscrypto problem. Ed
_______________________________________________ xmlsec mailing list [email protected] http://www.aleksey.com/mailman/listinfo/xmlsec
