A, but MyOrg-Plants sub CA and MyOrg-Cars is
also a CA derived from MyOrg and it simplifies the procedures I mention
above at SSLRequire directive, because the filter is based on Sub-CA and not
on EVERY client.
--
View this message in context:
http://www.nabble.com/One-CA-for-many-clients-%28a-silly-q
--
View this message in context:
http://www.nabble.com/One-CA-for-many-clients-%28a-silly-question%29-tp24510806p24559656.html
Sent from the OpenSSL - User mailing list archive at Nabble.com.
__
OpenSSL Project
covers the needs of the IETF.
Peter
-Original Message-
From: owner-openssl-us...@openssl.org [mailto:owner-openssl-us...@openssl.org]
On Behalf Of Patrick Patterson
Sent: Sunday, July 19, 2009 12:40 AM
To: openssl-users@openssl.org
Subject: Re: One CA for many clients (a silly question)
Hi
Hi there:
PMHager wrote:
> Correct, as I already denoted these are from the obsolete RFC2459.
>
> As the IETF/PKIX charter could not define a consenting set of flags,
> Steve Kent had suggested to drop them and leave it to the IPsec WG.
> This has been done by RFC4809: Its recommendation is not
ehalf Of Kyle Hamilton
Sent: Friday, July 17, 2009 7:11 PM
To: openssl-users@openssl.org
Subject: Re: One CA for many clients (a silly question)
kp-ipsec* has been formally deprecated by the IETF ipsec working
group, and thus if any implementation demands that they're there it's
a bug i
ou will need to test whether your
> implementation does support them.
>
> Peter
>
> -Original Message-
> From: owner-openssl-us...@openssl.org
> [mailto:owner-openssl-us...@openssl.org] On Behalf
> Of Dr. Stephen Henson
> Sent: Thursday, July 16, 2009 6:24 PM
> T
: One CA for many clients (a silly question)
On Wed, Jul 15, 2009, stortoaranci wrote:
>
> Hi All,
>
> I just have a silly question on Openssl.
>
> I use a self-signed CA to sign several server/clients cert.
>
> For example I could use signed certs to implement an Ope
thing produced by it.
>
> -Kyle H
>
> On Wed, Jul 15, 2009 at 11:29 PM, stortoaranci wrote:
> >
> > Hi All,
> >
> > I just have a silly question on Openssl.
> >
> > I use a self-signed CA to sign several server/clients cert.
> >
> > For e
ranci wrote:
>
> Hi All,
>
> I just have a silly question on Openssl.
>
> I use a self-signed CA to sign several server/clients cert.
>
> For example I could use signed certs to implement an OpenVPN LAN and one
> Wi-FI RADIUS auth for different clients.
>
> The ques
On Wed, Jul 15, 2009, stortoaranci wrote:
>
> Hi All,
>
> I just have a silly question on Openssl.
>
> I use a self-signed CA to sign several server/clients cert.
>
> For example I could use signed certs to implement an OpenVPN LAN and one
> Wi-FI RADIUS auth for
stortoaranci wrote:
> Hi All,
>
> I just have a silly question on Openssl.
>
> I use a self-signed CA to sign several server/clients cert.
>
> For example I could use signed certs to implement an OpenVPN LAN and one
> Wi-FI RADIUS auth for different clients.
>
&g
Hi All,
I just have a silly question on Openssl.
I use a self-signed CA to sign several server/clients cert.
For example I could use signed certs to implement an OpenVPN LAN and one
Wi-FI RADIUS auth for different clients.
The question is: "how to be sure that a client allowed to use the
Would it be possible to have a look at the certificates?
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]]On Behalf Of Ugron, Zoltan
> Sent: viernes, 24 de noviembre de 2000 15:38
> To: '[EMAIL PROTECTED]'
> Subject: silly question
Hello,
What can be the problem if I created some certificates under netscape and
under ie
(their status are OK, they are placed under personal certs. Verify says OK).
But when I try to use them, the browser said that I have no certificate at
all!
thnks,
> _
14 matches
Mail list logo
