How are intermediate certificates installed on the Kerio MailServer / Kerio Connect Groupware Server?

Create three individual text files from the three certificate texts and name the files as follows: server.crt, intermediate.crt, rootca.crt The content of the files should look something like this:   server.crt –BEGIN CERTIFICATE– MTIzIGNlcnRpZmljYXRlMRkwYDVQQLDBBEb21haW4gVmFsaWRhdGVkMRswGQYD … nFxaNxO61bChl1pZx64r4s/k+voqZ6X9T3Cc4 –END CERTIFICATE–   intermediate.crt –BEGIN CERTIFICATE– MTIzIGNlcnRpZmljYXRlMRkwYDVQQLDBBEb21haW4gVmFsaWRhdGVkMRswGQYD … nFxaNxO61bChl1pZx64r4s/k+voqZ6X9T3Cc4 –END CERTIFICATE–   rootca.crt –BEGIN CERTIFICATE– MTIzIGNlcnRpZmljYXRlMRkwYDVQQLDBBEb21haW4gVmFsaWRhdGVkMRswGQYD … nFxaNxO61bChl1pZx64r4s/k+voqZ6X9T3Cc4 –END […]

Mehr lesen

How are intermediate certificates installed in lighttpd?

Create the two necessary files as follows: cat private.key mycert.crt > lighttpd-server.pem cat root.crt intermediate.crt > lighttpd-ca.pem   Afterwards you integrate the files into the configuration as follows: $SERVER[„socket“] == „:443“ { ssl.engine = „enable“ ssl.pemfile = „/etc/ssl/lighttpd-server.pem“ ssl.ca-file = „/etc/ssl/lighttpd-ca.pem“ } Kindly supported by Weiss System

Mehr lesen

Problems with Windows XP when using SHA-2 certificates

Some CAs remain cautious about deleting SHA-1. This is especially related to Windows XP: The support for XP expired in April 2014, nevertheless XP remains the number one operating system for many users and unfortunately also for various authorities and companies. In order for Windows XP to recognize SHA-2, it is necessary to install the […]

Mehr lesen

How do I create a SHA-2 signed CSR in Apache?

A CSR is a file that contains your application data and the public key to your private key. Create your CSR file as follows and then copy its contents into the appropriate field in the ordering process. By default, the OpenSSL cryptography tools are configured to generate only SHA-1 signatures. If you want to generate […]

Mehr lesen

What is a time stamp?

A time stamp is a special form of digital signature that contains reliable time information and thus confirms the exact time of the signature of a program/application. This ensures that the trustworthiness of the signature does not expire when the code signing certificate does expire. This means that even if a code signing certificate expires, […]

Mehr lesen

How is the time stamp activated for Java?

Depending on the document to be signed, proceed as follows: Java: jarsigner.exe -> keypass PassphrasePassword -> keystore YourKeystore -> storepass Keystorepassword -> tsa URL of the TIMESTAMP server -> digestalg SHA1 Application.jar YourAlias For further questions please contact our support team at +49 661 480 276 10.

Mehr lesen