we are using openssl to issue personal certificates to
our employees so that we can restrict access to our
website.
we would like to prevent users from moving these certs
from their PC to another PC.
is there any way to tag these certificates so that a
browser will refuse to export them?
steve wrote:
Do you mean 'private keys'? Certificates are public
knowledge and can't be restricted in that way. What OS
is this for, if windows then you can for MSIE but it
depends on how you import the certificates in the
first place.
i think i mean 'certificates', as in