NetTalk Central
The Rest Of NetTalk => The Rest - Ask For Help => Topic started by: Flint G on March 14, 2011, 09:41:14 AM
-
Hello,
How is the CA_Roots.pem file generated, and can I generate my own?
For instance, I would like to include my own CA root certificate in the CA_Roots.pem file we ship so our software will recognize our own CA. Can I use OpenSSL to generate the CA_Roots.pem file NetTalk uses?
Regards,
Flint
-
>> How is the CA_Roots.pem file generated,
it's jsut a text file. Details on the contents are described in the file itself if you open it with a text editor.
>> can I [add] my own?
yes.
>> For instance, I would like to include my own CA root certificate in the CA_Roots.pem file we ship so our software will recognize our own CA.
yes.
>> Can I use OpenSSL to generate the CA_Roots.pem file NetTalk uses?
no.
cheers
Bruce
-
Thanks, Bruce.
Using the URL provided in the file (http://curl.haxx.se/docs/caextract.html) I found that I could (and I should) update this file on a regular basis. The file I was previously using was from 2005 (scary), and contained more header-garbage than is included in the current 2011 versions. The header-garbage had me confused as I couldn't figure out how to add the header-garbage for my CA certificate.
So, now that the new file is header-garbage-less, it's quite obvious to me how to add my own CA certificate! :D
Hope this helps some other wandering soul ...
Regards,
Flint