Ah, I miss that one. Thanks.
--
qun-ying
--- On Wed, 2/4/09, Giang Nguyen wrote:
> From: Giang Nguyen
> Subject: RE: IE could not connect to a chaine-cert's ssl server
> To: openssl-users@openssl.org
> Received: Wednesday, February 4, 2009, 2:02 PM
> i think it's be
i think it's because your "my-cacert.pem" is not considered a CA: it has
"CA:FALSE"
arch [temp]$ openssl x509 -in my-cacert.pem
-BEGIN CERTIFICATE-
MIIC9jCCAl+gAwIBAgIBADANBgkqhkiG9w0BAQUFADB4MQswCQYDVQQGEwJDQTET
MBEGA1UECBMKU29tZS1TdGF0ZTEhMB8GA1UEChMYSW50ZXJuZXQgV2lkZ2l0cyBQ
dHkgTHRkMR
Hi,
I try to test out some chained certificates with web server. My setup is as
follow:
my-cacert.pem <== my ca certificate
level1.cert <= my level1 certificate signed by my ca
level1.key <= my level1's key file
level2.pem <= my level2 certificate use as a server side certificate
ca.pem <= incl