This signature replacement algorithm no is apparently not supported for use with Firefox 27.0 This CA cause ROOT to issue the cert with a signature that is encrypted with the algorithm RSASSA-PSS (1.2.840.113549.1.1.10). HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\CertSvc\Configuration\IssuingCA\CSP\AlternateSignatureAlgorithm = 1 The ROOT CA has the following registry key configuration when cert Isma was published: Question: Firefox NSS #11 internal Module PCKS supports RSASSA - PSS SHA-256 with different hashes? How can I solve this further? Only when access to the Web Services of Lync from Firefox. Lync client also uses the same certificates, no problem. Note: No problem when using the same certificates in Internet Explorer 8, 9 or 10 on the same system.
Removed and added certificates ROOT and ISMA. I completely uninstalled and reinstalled Firefox. I get the message "the peer certificate has an invalid signature." ISSUINGCA certificate installed in the store and display "couldn't trust for unknown reasons" has also SHA2 signature with the RSASSA-PSS algorithmĬertificate issued is for a Web Server front end Lync and when it tries to load the secure web connection. ROOTCA certificate installed in the store and the approved display (PKCS #1 SHA-256 with RSA algorithm encryption and uses a signature SHA2) Root CA offline (Standalone Windows 2008 R2, Enterprise Edition) and Isma online for delivery of certificates (Domain-Joined, issuing CA) With the help of a PKI on site of 2 levels.
Firefox shows "the peer certificate has an invalid signature." ISMA shows "could not trust this certificate for unknown reasons.
0 kommentar(er)
