Peter Djalaliev wrote:
Hello,
I generated a client SSL certificate (tried both by using openssl and
certutil) converted it to PKCS#12 format. After that, I imported it
into Firefox and can see the certificate of the "Your Certificates" tab
in Edit > Preferences > Advanced > View Certificates.
However, when I do the TLS handshake, the client never sends a
certificates - the certificate callback function always fails and the
client sends a TLS alert 41 instead.
What should I do to make NSS/PSM detect the client SSL certificate that
I imported into Firefox?
You need to get the remote end to request it, not the other way round...
We have used this system on the CAcert website for a long time now, and
have thrown up an example on how to do this...
http://www.cacert.org/help.php?id=9
--
Best regards,
Duane
http://www.cacert.org - Free Security Certificates
http://www.nodedb.com - Think globally, network locally
http://www.sydneywireless.com - Telecommunications Freedom
http://e164.org - Because e164.arpa is a tax on VoIP
"In the long run the pessimist may be proved right,
but the optimist has a better time on the trip."
_______________________________________________
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
