Heather Peake wrote:
> I've got an SSL certificate and I'm worried that it isn't the right kind,
> mainly because the file extension that it has is .pem
The conventions for file extensions on X.509 certificates seem to be a
bit vague and loosely followed. I've seen .pem, .crt., .cer and .der.
It's what's inside that matters. If you want a pre-check on that, send
me the file you have by private e-mail and I'll confirm whether it looks
like the right kind of thing.
Under no circumstances send me or anyone else any other files that might
be keys of any kind, of course.
> If I go ahead and use it and register my IDP on the UK Federation with it
> what happens if it is the wrong kind of certificate?
> Will I bring everything to it's knees? Will I get some sort of warning
> message? Will I just fail to be able to access anything and be sat
> scratching my head as to what could be wrong?
The head-scratching is the usual result, in my experience. Annoying for
you, but the good news is that it won't have any effect on anyone else. ;-)
-- Ian
|