Home Help Center

IceSSL CA public key and C#

tkriegertkrieger Member Thomas KriegerOrganization: Analytic Pipe GmbHProject: BISS
Hello,

i have an application which uses IceSSL with it's own CA made with OpenSSL.
So i wrote the application in C# and both sides have an PKCS12 Formated File with the private key and the certificate. Also everyone has the CA self signed public key. Everything works find and the client and server side communicate correctly.

But i wonder how i can get the CA public key in an PKCS12 Format when C# cannot read PEM Strings. So how can IceSSL verify the Client Certificate against the CA public key.

So i tried with an old PKCS12 File from another CA. I replaced the correct PKCS12 File on client side with the old one and again tried to connect. Everything works fine, but i expected now connection in cause of an not correctly signed certificate.

Whats wrong here? Hope someone can help me.

My Server Side IceSSL Parameters:

IceSSL.DefaultDir=C:\projekte\ca_keys
IceSSL.CertFile=server_cert.pfx
IceSSL.Password=ServicePasswort
IceSSL.ImportCert.LocalMachine.AuthRoot=ca_cert.pem

Best Regards

Thomas Krieger

Comments

  • matthewmatthew NL, CanadaMember Matthew NewhookOrganization: ZeroC, Inc.Project: Internet Communications Engine ✭✭✭
    I'm not entirely sure what problem you are having... If sounds like you don't know how to convert a PEM encoded cert into a PKCS#12 formatted cert. If this is the case I suggest you look at the import.py script that is part of the simple CA package.
Sign In or Register to comment.