Thanks for taking the trouble to respond to my apparent thick-mindedness, Alex!
I pointed the URL to the actual test file containing the certificate: in this case
file:///opt/apache/conf/ssl.crt/ca.crt.
Then, I hit on the security icon and asked to import the certificate. It asks for a
password(which I left blank) and then the name of the file - indicating an *.p12
extension. However, it will only find the file without the extensio, of course. This
suggests to me that some kind of conversion is necessary? If I ask to look for
certificates accepted (in any category!) nothing shows except the commercial CAs.
Can you provide me with a further step up?
Maybe I need to go back and recreate the certificates in encryted form???
Thanks, Alex.
George
Alex Pircher [EMAIL PROTECTED] wrote:
Can you provide the URL of loadcacert.cgi?
If SSL is enabled the mime-type for certificates is ordinary correctly set in the
httpd.conf.
So actually you don't need loadcacert.cgi, you just have to point your Browser to the
URL of
the certificate. This worked for me without problems.
GreetingX,
Alex
I prepared the CAs using the make certificate TYPE=custom option. Both the server
and the CA
files look fine to me and are in their proper pews.
There were warnings about security depth being 0, but that is to be expected during
the creation
process.
In the mod_ssl documentation the instruction asks that I 'fire up' Communicator and
use the Perl
script loadcacert.cgi in the pkg.contrib directory to load the CA into the browser.
Then I have to 'walk through the dialog boxes'.
Well, this is all too simple for me to comprehend. I can execute the script file
and it assigns
the x509 type, determines the length and prints out the certificate data, but that
doesn't get
into Communicator, so nothing really happens. How do I tie the script output into
Communicator
to trigger what should be happening?
Or is there a more straightforward way???
Thanks,
George Walsh,
Managing Director
Travel Seewise Pacific Corp
--
George Walsh,
Managing Director,
Travel Seewise Pacific Corp
Vancouver Canada
__
Your favorite stores, helpful shopping tools and great gift ideas. Experience the
convenience of
buying online with Shop@Netscape! http://shopnow.netscape.com/
Get your own FREE, personal Netscape Mail account today at
http://webmail.netscape.com/
__
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager[EMAIL PROTECTED]
__
Do You Yahoo!?
Gesendet von Yahoo! Mail - http://mail.yahoo.de
__
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager[EMAIL PROTECTED]
--
George Walsh,
Managing Director,
Travel Seewise Pacific Corp
Vancouver Canada
__
Your favorite stores, helpful shopping tools and great gift ideas. Experience the
convenience of buying online with Shop@Netscape! http://shopnow.netscape.com/
Get your own FREE, personal Netscape Mail account today at http://webmail.netscape.com/
__
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager[EMAIL PROTECTED]