Nelson B wrote:
Simon Coffey wrote:Nelson B wrote:For an SSL server, the cert needs to be allowed "key encipherment" usage
(asuming the public key is an RSA public key).Here's the cert that the firewall uses:[snip]Key Usage: digitalSignature dataEncipherment[snip]Now, you say usage should include "key encipherment". Is that the same as dataEncipherment?
No. key encipherment and data encipherment are separate usages.
Right.. off to bother firewall developers...! thanks Simon
