×
The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.
On Tue, Apr 28, 2020 at 1:04 PM Jay Vaughn <jeffersonvaughn@xxxxxxxxx>
wrote:
handing a generated cert
from PASE to my consumer doesn't really leave me with that warm fuzzy. :)
but thanks!
It's not generated from PASE. It's just shown to you by the application
openssl.
I just suggested openssl as an easy way to grab a transportable form of the
cert.
You can export it from DCM, too.
I think you need to read up on SSL, TLS and HTTPS.
The only thing your *server cert* does is assert "I am me".
The *client* will only believe that assertion in one of two cases:
1. The cert is signed by a CA which leads in a chain of CAs to some CA
the *client* already possesses a cert for.
2. You add the *server*'s cert manually to the *client*'s trust store
and tell it, "THOU SHALT ACCEPT THIS FOR WHAT IT CLAIMS TO BE!"
That's it. If you pass around the private key the server cert was signed
by, anyone can fake your server cert that you already gave to your clients.
midrange.com
