2006-09-06
The problems encountered when using Microsoft Internet Explorer and Outlook
and certificates issued by the AustrianGrid CA have been solved.
The cause were unnecessary usage entries in the AustrianGrid CA Root
Certificate that triggered Microsoft Windows to
refuse to accept the end-entity certificates.
As of now the secure communication (HTTPS) between IE and the AustrianGrid CA
web pages is possible. It is also possible to sign e-mails and verify the
signature of received messages using Outlook.
You must replace the old AustrianGridCA Root Certificate for all web browsers
as soon as possible!!!
Otherwise you may encounter all kind of error messages (e.g. duplicate
certificate for the same serial number, etc).
On all Microsoft Windows systems the certificate administration is done at
the system level. Therefore go to Internet options -> Content -> Certificates
(from within the system level, IE or Outlook) and delete the old
AustrianGrid CA Root Certificate.
For all browsers except IE (Mozilla, Seamonkey, Firefox, etc.) running under all
operating systems open the browser, got to Preferences, go to the
certificate administration and delete the old AustrianGrid CA Root
Certificate.
Finally open the web page Root
Certificate & CRL and "Dowload into the browser" or save the Root
Certificate on a file and "import" it into your browser and mail client (e.g.
Thunderbird).