Hello, > I spent lot of time to get this information but I couldnt find > this(clients private key usage) in any of the document. > Can you please suggest me some good website/ books to learn how SSL > works? One of good book: "SSL and TLS essentials" by Stephen Thomas (Willey).
> One more question: > Is CSR machine specific? If I generate the CSR in machine A and > install the certificate in Machine B will it work? If not can you > please tell me why it will not work? > What are the machne specific details goes into CSR? I assume that CSR is Certificate Signing Request. This is not machine dependent because this is universal ASN.1 structure (in this format called DER format) optionally base64 encoded with some headers (in this format called PEM format). Maybe some "newline" problems sometimes may occur. > Also the document says the while generating CSR the the Common Name > [CN] should match my hostname which is www.dubaibank.ae. when the > server presents its certificate to the client will the client > verify the URL entered in browser with the URL that is there in the > certificate? Yes, and if hostname from certificate will differ from entered in URL you will get message window with this information and you are requested to make decision: "Continue Anyway" or "Drop Connection". Best regards, -- Marek Marcola <[EMAIL PROTECTED]> ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [email protected] Automated List Manager [EMAIL PROTECTED]
