McAfee Secure Content Management and Verisign Certificates

Maybe someone out there is using the McAfee SCM appliance for TLS communications using Verisign Certificates.  What has your experience been?  We currently have McAfee Support and Development trying to make it work.  They have mentioned that they do not support certificate chaining.  Has anyone gotten TLS to work on their SCM box?

Edit: OK, the process went something like this:  Use OpenSSL to generate a private RSA key.  Then using OpenSSL again, generate the CSR.  Merge the private key with the CSR using WordPad or linux command cat.  Go to Versign (or Thawte…) and get their CA (and in some cases their intermediate CA) and import it to McAfee SCM.  Import the certificate in PEM format.  Apply All Changes…  To make matters more interesting, they pointed us to Cisco’s directions on how to do use OpenSSL.  Sigh.  Hoping it will work…

Edit:  Well, apparently we  have a certificate type mismatch with one of our certificates.  We created the certs using the same private key and started running into issues on one box.  Looks like we are going to have to go back to Verisign to have a certificate reissued.

June 27, 2008 - Posted by Zeff | General | General