[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: TLS client certificate problem



On Sun, 17 Sep 2000, Kurt D. Zeilenga wrote:
> At 08:57 PM 9/17/00 -0400, you wrote:
> >On Sat, 16 Sep 2000, Kurt D. Zeilenga wrote:
> >> What does "openssl s_client" say?
> >
> >$ openssl s_client -host localhost -port 636 -cert ~/certs/michael.pem -key ~/private/michael.key -CAfile/opt/ssl/certs/newearthCA.pem
> 
> Looks to me like your server is operating just fine...
> Try running "openssl s_server" to test your client.

[root@sapphire ssl]# openssl s_server -CAfile /opt/ssl/certs/ca.crt \
 -cert ~directory/ldap/certs/directory.crt \
 -key ~directory/ldap/certs/directory.key -state

Using default temp DH parameters
ACCEPT
SSL_accept:before/accept initialization
SSL_accept:SSLv3 read client hello A
SSL_accept:SSLv3 write server hello A
SSL_accept:SSLv3 write certificate A
SSL_accept:SSLv3 write server done A
SSL_accept:SSLv3 flush data

The above lines are produced after the Outlook Express
client tries to connect.


-- 
Michael V. David - MVD53 - michael@newearth.org - mvd@netaxs.com
WEB: http://www.netaxs.com/~mvd/mvd - http://www.newearth.org/~michael
IRC: irc.newearth.org#newearth - AIM: newearth7 - GPS: 40 07 53 N, 75 04 04 W
Quidquid latine dicitur, altum viditur.