Re: Certificate chain

From: "JB Miha" <jimibtn@xxxxxxxx>
Date: Fri, 27 Apr 2007 09:59:51 +0200

I think I found what the problem is. In test environment I found out that I
should add url to root certificate's AIA extension where that certificate
can be found. But since we have holidays till Thursday I'm not able to test
in real environment.

In last two posts when I wrote about CRL I actually mean CDP and we have one
CDP that is available on http url but there is no crl file jet.

I totally agree that we should purchase certificate from one of trusted CAs
but I think those who are in charge of buying software won't be impressed.
And to be quiet hones I never checked what the pricing for those
certificates is.

And thanks for many suggestions and comments Brian.

Miha

.

References:
- Certificate chain
  - From: JB Miha
- Re: Certificate chain
  - From: Brian Komar
- Re: Certificate chain
  - From: JB Miha
- Re: Certificate chain
  - From: Brian Komar

Prev by Date: Re: SMB Shares Dangerous?
Next by Date: Re: Folder permissions
Previous by thread: Re: Certificate chain
Next by thread: Re: Folder permissions
Index(es):
- Date
- Thread

Relevant Pages

Unable to find valid certification path to requested target
... In production we use a certificate signed by ... In our test environment we are going against a server that ... PKIX path building failed: ...
(comp.lang.java.security)
Re: How to enable my webservice to use https?
... SSL needs a self-signed certificate or a certificate issued by a CA that ... Presumably in a test environment we don't have a ... export the certificate with private key to a *.pfx file. ...
(microsoft.public.dotnet.framework.aspnet.webservices)
Re: Stand Alone CA Problem
... > the CRL from the CDP fast enough and times out. ... > download is usually many times faster. ... >> and imported it in my certificate store. ...
(microsoft.public.win2000.security)
Standalone Root CA
... AIA to a location within our AD and one on a web server. ... certificate and published a new CRL. ... certutil -dspublish to import the AIA and CDP information into AD. Used ...
(microsoft.public.windows.server.networking)
Re: Windows doesnt verify digital signature of CRL files
... Correct me if I am wrong but I understood that certificate validation was ... If the CDP location contains a valid CRL URL and that CA's ... CRL is not already in cache, then the CRL is retreived from that CDP URL ...
(Bugtraq)