+设为首页 +添加到收藏夹
this document explains how to use certificate authentication when connecting to a site that requires certificate authentication. we are using indy components on the client side and some server (ms iis, apache, …) on the server side. in the example we will be using http protocol, cause it is very easy to set such an environment. 【推荐阅读:quake2源码分析(一) 】
task 1. convert the certificate from ms format to pem format used by openssl 【扩展信息:FAQ:关于《利用浏览器实现程序界面与实】
first of all we must get certificates and private keys for the client. lets suppose that we got some private key/certificate pair from some certificate authority (like verisign) and we have this listed in ms ie in personal certificates store.first we have to export the certificate, i dont write down but it is assumed that also private key is exported, to the pfx file (personal exchange format). we can protect this file with some password, but for lets not for the sake of example.
when we have this file, in our case is test_b.pfx, we have to convert it to pem format. with indyssl dlls we distribute also the precompiled openssl.exe utility that can be used to do the conversion.the proper parameters are:
openssl.exe pkcs12 –in test_b.pfx –out test_b.pem... 下一页