Hi,
anyone know how to sign a X.509 cert with the attribute:
extended keyUsage
set to
TLS Web server authentication
with the CA command?
I'm trying to set up an IPsec session between a win2000 and a Cisco
router using IKE with X.509 certs. It seems that win2000 start to look
for a certificate with the extended keyUsege set to TLS Web server
autentication, what Microsoft call a machine cert. Without that exension
win2000 is unable to use a certificate as a 'machine certificate'.
Thx, Corrado.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]