ssl handshake error unknown ca

Login to reply to this topic.
Mon, 2007-09-17 10:45
giuseppe_ottelli
Joined: 2007-09-17
 Forum posts: 2

Hi,

I'm developing an application that uses ssl/tls protection on 2nd edition sdk;I'm testing it on the emulator.
During the handshake, my ssl client sends to the server this error message:
SSL3 alert read:fatal:unknown CA (SSL alert number 48)
and returns error code -7548 (KErrSSLAlertUnknownCA --> Either the CA certificate could not be located or the CA could not be matched with a known trusted CA)
Someone can help me to solve this problem?

I set up a CA and then I created a server certificate and signed it with CA certificate...is it the right way?
Which type of certificate (self-signed, CA signed) can i use to test my ssl client?

thanks in advance

Giuseppe

Mon, 2007-09-17 12:42
Werries
Joined: 2006-09-18
 Forum posts: 68
Re: ssl handshake error unknown ca

I set up a CA and then I created a server certificate and signed it with CA certificate.

Did you create your own CA or did you buy a CA certificate? If you set up your own CA then you need to install it to the phone. Otherwise the phone will not recognise it as a CA. Yes it is correct to sign your certificate with the CA certificate.

Hope this helps.

 
Mon, 2007-09-17 12:58
giuseppe_ottelli
Joined: 2007-09-17
 Forum posts: 2
Re: ssl handshake error unknown ca

thanks for the reply, Werries...I didn't test my client with a real devices yet,I'm testing it on emulator...How can i import my ca certificate into emulator?

thanks
Giuseppe

 
Mon, 2007-09-17 16:21
Werries
Joined: 2006-09-18
 Forum posts: 68
Re: ssl handshake error unknown ca

1.) Copy the certificate file to %EPOCROOT%\Epoc32\winscw\c\Data

2.) Go to organiser, File mngr. and then open the certificate, it will ask if you would like to install the certificate.

 
  • Login to reply to this topic.