Importing the personal certificate (fails). Why?

Master

Posts: 121 Points: 108 Rating: 4 Authority: 4 Joined: 28 February 2005

08 December 2005 15:25:09

I just got my personal certificate from Thawte Personal Freemail Issuing CA (Thawte Consulting (Pty) Ltd. ZA).
I used Opera v8.51 to enroll and retrieve the certificate.

Is it possible to import it into the Bat!'s certificate store?

Opera knows these formats to export the certificate:
*.usr ; X509
*.p7s ; PKCS #7 signed
*.p7 ; PKCS #7
*.p12 : PKCS #12 with private key
*.pem ; PEM

When I try to import *.usr or *.pem they get imported but the Bat! regards them as being invalid - "The issuer of this certificate chain is not found" is said in the viewer.

Then I try *.p7 and *.p7s - these fail with error messages regarding corrupted or not a valid file.

When I try to import *.p12 then the Bat! asks me to "Input password to decrypt data stored in my-cert.p12." in it's Input PFX password dialog.
I enter the pasword I used when I was enrolling (and which Opera happily accepted when exporting the data) - the Bat! says it was invalid, and import fails.

Which password is the Bat! asking me for?

Why the *.usr and *.pem are considered invalid when I can see the Thawte Personal Freemail Issuing CA in the Trusted Root CA's list?

winXP-SP3 Pro, the Bat! v4.0.38

Adam Clarke

Beginner

Posts: 6 Points: 3 Rating: 0 Authority: 0 Joined: 26 November 2005

09 December 2005 23:00:57

Hi

I used the P12 format to export from Firefox and it imported OK into TB. The password dialogue did come up several times however and at first I thought that TB wasn't accepting it. Then I realised that the Password requester was actually asking for the password to decrypt different parts of the cert. I just kept entering the password when prompted and eventually it imported AOK

HTH

Adam

n.a. n.a. Master Posts: 121 Points: 108 Rating: 4 Authority: 4 Joined: 28 February 2005	#3 0 10 December 2005 16:47:10 Yes, it was 100% my own fault. I selected 20-character password when I enrolled for the certificate, and while Opera asked me for it once to export .p12 and I choose the same 20-character password to protect the private key, I was somehow inaccurate and inattentive when I typed the password in the Bat!... (I made several attempts though...) Once I noticed that the dialog header has changed and the Bat! was actually asking me the next password - I managed to keep the concentration and made no typos - the certificate is now imported and works fine. I'm very happy with the Bat! really! RE .usr and *.pem files: these were regarded as invalid because I (by mistake) erased all the Intermediate CA entryes from the address book... My fault again... winXP-SP3 Pro, the Bat! v4.0.38

Products

Support

News

Company

Community