Hello all,
We set up an OpenCA that will be used to generate user certificates to
identify users on our SSL website.
The website has a web-server certificate installed and is configured to
require client certificates. So far so good....
Now, when a user connects to the site, the browser shows a dialog with the
message : The web site you want to view requests identification. Select the
certificate to use when connecting...
The problem is that no certificates are shown, apparently no certificate is
valid to do the client identification although a user certificate is
installed on the client.
The key usage of the installed user certificate is : Digital Signature ,
Non-Repudiation , Key Encipherment(E0)
The enhanced key usage is :
Client Authentication(1.3.6.1.5.5.7.3.2)
Secure Email(1.3.6.1.5.5.7.3.4)
Smart Card Logon(1.3.6.1.4.1.311.20.2.2)
Is there an attribute missing in the user certificate?
Is there something wrong with the server certificate or the configuration of
the webserver?
Webserver : IIS 4.0
Client browser : IE 6.0
Thanks in advance
Freek
-------------------------------------------------------
This SF.net email is sponsored by:Crypto Challenge is now open!
Get cracking and register here for some mind boggling fun and
the chance of winning an Apple iPod:
http://ads.sourceforge.net/cgi-bin/redirect.pl?thaw0031en
_______________________________________________
Openca-Users mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/openca-users
