login about faq

I've run into an issue using the Verify API: https://www.chilkatsoft.com/refdoc/delphiMimeRef.html

My trading partner is not including a public key as part of the signature. According to the Verify documentation:

A PKCS7 signature usually embeds both the signing certificate with its public key. Therefore, it is usually possible to verify a signature without the need to already have the certificate installed. If the signature does not embed the certificate, the Verify method will automatically locate and use the certificate if it was correctly pre-installed on the computer.

Where on the computer is "correctly pre-installed"? I've tried loading the public key of the signing cert, the intermediate CA, and the root all into Local Computer > Trusted Root, as well as Intermediate Certification Authorities, and Third-Party Root Certification Authorities. We still mark the incoming message as untrusted. Which store do those certificates need to be installed in?


asked Sep 05 '17 at 18:08

cschuh's gravatar image


Be the first one to answer this question!
toggle preview

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here



Answers and Comments

Markdown Basics

  • *italic* or __italic__
  • **bold** or __bold__
  • link:[text](http://url.com/ "title")
  • image?![alt text](/path/img.jpg "title")
  • numbered list: 1. Foo 2. Bar
  • to add a line break simply add two spaces to where you would like the new line to be.
  • basic HTML tags are also supported



Asked: Sep 05 '17 at 18:08

Seen: 1,292 times

Last updated: Sep 05 '17 at 18:08

powered by OSQA