List Info

Thread: Inserting a cert into a SonyEricsson K800i
Inserting a cert into a SonyEricsson K800i
user name
 2006-09-19 15:29:58 

  


  

    
According to the SE support the cert needs to be in x.509 .der format.

This means I should be able to import the CAcert root cert.



But, what about client certs? It seems I should be able to insert such
certs too. There is a, now empty, list for Client Certs, alongside the
"Trusted issuers", where I intend to put the root cert, if it lets me.
The problem is, I don't have a clue how to create a client cert in .der
format. Everything I try to Backup (export) from
Firefox/Thunderbird/Seamonkey ends up as .P12 files.



Please advise.



/Kim Nilsson


  

  
  
   
     
    

  

    Inserting a cert into a SonyEricsson
K800i
  


  

     user name

     2006-09-20 00:07:55
  


  

    
Am Dienstag, 19. September 2006 17:29 schrieb Kim Nilsson:
> According to the SE support the cert needs to be in
x.509 .der format.
> This means I should be able to import the CAcert root
cert.

> But, what about client certs? It seems I should be able
to insert such
> certs too. There is a, now empty, list for Client
Certs, alongside the
> "Trusted issuers", where I intend to put
the root cert, if it lets me.

Usually, you first have to import the root certificate,
afterwards you can 
load client certs.

> The problem is, I don't have a clue how to create a
client cert in .der
> format. Everything I try to Backup (export) from
> Firefox/Thunderbird/Seamonkey ends up as .P12 files.

The problem is that you also need the secret key for it, not
just the cert.
And PKCS#12 (.p12, .pfx) is the usual transfer format for
certificate+secret 
key packages.

You can extract the certificate from a backup, and encode it
in .der format 
with the openssl tool on the commandline:

openssl pkcs12 -clcerts -in backup.p12 -nodes -out cert.pem
openssl x509 -in cert.pem -out cert.der -outform der


Best regards,
Philipp Gühring

_______________________________________________
Have you subscribed to our RSS News Feed yet?

CAcert-Support mailing list
CAcert-Supportlists.cacert.org
http://lists.cacert.org/cgi-bin/mailman/listinfo/
cacert-support


  


  

    
  

  
  
   
     
    

  

    Inserting a cert into a SonyEricsson
K800i
  


  

     user name

     2006-09-20 20:02:40
  


  

    
Hi Kim,

Kim Nilsson wrote:
> According to the SE support the cert needs to be in
x.509 .der format.
> This means I should be able to import the CAcert root
cert.
> 
> But, what about client certs? It seems I should be able
to insert such 
> certs too. There is a, now empty, list for Client
Certs, alongside the 
> "Trusted issuers", where I intend to put
the root cert, if it lets me. 
> The problem is, I don't have a clue how to create a
client cert in .der 
> format. Everything I try to Backup (export) from 
> Firefox/Thunderbird/Seamonkey ends up as .P12 files.
> 
> Please advise.

There's a java format convertor out there :

http://yello
wcat1.free.fr/index_ktl.html

-- 
Best regards,

Guillaume

Vision without action is a daydream. Action without vision
is a
nightmare.  -- Japanese Proverb

MSN wildcat_parishotmail.fr IRC wildcat_parisirc.cacert.org
_______________________________________________
Have you subscribed to our RSS News Feed yet?

CAcert-Support mailing list
CAcert-Supportlists.cacert.org
http://lists.cacert.org/cgi-bin/mailman/listinfo/
cacert-support


  


  

    
  

  
  
   
     
    






 [1-3]











   
 





about | contact  Other archives ( Real Estate discussion Medical topics )