[openssl-users] Using Windows system certficate store for server authentication

Juan Isoza jisoza at gmail.com
Fri Sep 7 07:00:10 UTC 2018


It's a good idea using openssl under windows (with new openssl 1.1.1, we
will be able to use TLS 1.3 under Windows, from 7/2008 to 10/2016) instead
internal windows crypto..

But, by example, curl build for windows with openssl need a --insecure
parameters or a custom root certificate file.

What about using the Windows certificate store ?

I found info at
https://stackoverflow.com/questions/9507184/can-openssl-on-windows-use-the-system-certificate-store/15451831

There is some code in openssl (in engines\e_capi.c) which deal with Windows
certificate store, but this seem not solve the problem
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20180907/d38f8403/attachment.html>


More information about the openssl-users mailing list