Hi! Long time… I strated using the CA to produce certificates for a program i’m developing.
The problem i found is that the Localy generated CA doesn’t provide a CRL distribution point information with in return generates that the cert is impossible to verify…. Would it be possible to get a setting och witch public point in zs box that should be used in crl distribution and get that info stuck on at least the ca’s cert….
Yes i know that too. But the information is not put into the generated root certificate as a CRL distribution point WHY?
Because of this the user certs are useless. They cannot be validated by the recieving server. Installing the public key och ZeroShells root to the server only makes it trust the users but it canot validate the certificate…
I’m sure there must be an option that one may use when generating the certificates but it is not used when the root i generated through the webinterface.
Thanks this is great news.
Please se the first message in this thread. The setting i essential as most ZS boxes are multi homed with routing, nat… The setting would be how shall we define this zs host and then make the clr url complete with that hostname…