Posted: Tue Sep 16, 2003 1:26 pm Post subject: SSL channels from windows to Solaris not starting
Centurion
Joined: 10 Oct 2002 Posts: 136 Location: California
I am not able to setup SSL channels between a Windows2000 box and Solaris box. I am creating certificate on Solaris box using ikeyman utility and on Windows I am creating certificate using makecert command.
The channels do not start and give following error
A certificate encountered during SSL handshaking is regarded as bad for one of
the following reasons:
(a) it was formatted incorrectly and could not be validated, or
(b) it was formatted correctly but failed validation against the Certification
Authority (CA) root and other certificates held on the local system, or
(c) it was found in a Certification Revocation List (CRL) on an LDAP server.
The reasons b and c should not apply in my case so I am thinking the channels can not start due to reason (a).
Is there any compatibility issue between Windows and Unix for SSL?
It looks like you've forgotten to add the public certificates to the key repositories. I.e. Public certificate from Windows goes in Solaris kdb and public certificate from Solaris goes in Windows sto.
If you are and you've exchanged the public certificates, there is no reason why this shouldn't work. If all else fails send me an e mail and I'll reply with a quick guide with a couple of personal certificates.
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum