Michael Bell wrote, On 2009-01-21 08:29: > Nelson Bolyard wrote: > >> I think it would be more useful to find out if FF/TB can find the cert(s) >> for the issuer of your cert, and what extensions (if any) it finds in >> your cert, and the contents of those extensions. > > Well, after I started from scratch with a TB from Mozilla the purpose > was correct for my end user certificate. The CA certs are in the default > software store and on the card.
Hopefully only the CA certs appear in both places, and you personal cert is only in the card and not also in softoken. > The trusted flags are set for all CA certs. So if I insert the card then > the flags are automatically set. For ALL CA certs? If there is a chain of certs going from your cert up to some root, only the root should have a trust flag. > The configuration situation just looks fine. The cert is selected for > signing and encryption. The certificate is visible under "Your > certificates". The purpose is visible. The trust settings are correct. > > Well the only problem is, that it simply does not work. How does it fail? _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
