Ian McGreer wrote:
> Andrew Huntwork wrote: > >> I'm having problems creating a certificate signed by a self-signed >> certificate using certutil. Here's how the self signed cert is >> generated: >> >> rm -f server_db/* >> certutil -N -d server_db >> certutil -S -d server_db/ -x -n cacert -t "TCP,TCP,TCP" -s "CN=Andrew >> Huntwork, O=Group 6, L=Tucson, ST=AZ, C=US" -1 -2 -5 > > > > should be -t "TCu,TCu,TCu" > > I actually would have thought that wouldn't matter, that NSS would be > able to ascertain the cert was a user cert by locating it's private key. > But apparently that is not the case, you must explicitly state that the > cert is a user cert. This bug, BTW is fixed in 3.4. bob
