NetTalk Central

The Rest Of NetTalk => The Rest - Ask For Help => Topic started by: jari@softmade.fi on February 12, 2018, 01:30:45 AM

Title: How can I use the same certificate as IE?
Post by: jari@softmade.fi on February 12, 2018, 01:30:45 AM: Hi

One of my customers asks:

We want to create a client program for a webservice that requires HTTPS (SSL).
Is there an option to use the same certificate store as for example Internet Explorer uses to validate the server certificate?
We would not like to use a separate root certificate file for validating the server certificate, because there is a risk that the server operator changes their certification authority and them we would have to manually update the certificate file.
If it would use the machine certificate store then it would be updated by the regular windows update routines.

Jari
Title: Re: How can I use the same certificate as IE?
Post by: Bruce on June 19, 2018, 02:54:15 AM: >> Is there an option to use the same certificate store as for example Internet Explorer uses to validate the server certificate?

no, the list of trusted ROOT CA's is in the CAROOT.PEM file. This is periodically updated (from the list used by Google Chrome). You can however use any list you like in here. (see http://www.capesoft.com/docs/NetTalk10/NetTalk.htm#DeployingAtlsClientOrServer)

cheers
Bruce

SMF 2.0.19 | SMF © 2021, Simple Machines