[Bug 138519] verisign not Validated signture
Marc Mutz
mutz at kde.org
Mon Jun 16 23:30:51 BST 2008
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
http://bugs.kde.org/show_bug.cgi?id=138519
------- Additional Comments From mutz kde org 2008-06-17 00:30 -------
S/MIME trust is hierarchical, so you need to have the root certificate imported, and have it trusted, for signatures to verify correctly.
As for where to get that certificate, you have to ask Verisign.
It seems like you've tried to import the certificates from Outlook. Please make sure you have a file with only the root certificate in it, and try to import that into Kleopatra. If it doesn't work (says '1 considered, 0 imported'), then please try to import it on the command line:
gpgsm --import < file
and paste the error you get there.
If either of the two worked out, make sure the root is trusted. If it is not, set gpg-agent.conf:allow-mark-trusted (via config file, or in the GUI -> Configure GnuPG Backend -> Gpg Agent -> [x] Allow clients to mark keys as "trusted", then do a validating keylisting (Shift-F5). The agent should ask you whether you trust the root cert. After that, the signature should verify. You might have to disable crl checks ("never consult a CRL"), too.
More information about the Kdepim-bugs
mailing list