Hi, i have a problem with my CA. I have generated a Sub-CA with openca. For that I have configured and installed it like described in the manual. Then I imported the ca-certificate (is stored in db as valid ca certificate). After this, I copied the root certificate into the chain-directory of the ca. Then I klickt on the "Rebuild Chain"-link. There was a success-message. Then I created a CA Admin certificate and installed it into my browser. After this I wanted to create a User certificate. I made the request and in RA I wanted to approve it with my Operator certificate. Approving was successful, but when I want to have a look on the list of approved requests in the OP. column is the message:
>Cannot determine certificate from signature! If I have a look on the signature-infos, there is a message in DB-status: >The PKCS#7-object signals an error. The signature is not valid. >PKCS#7-Error 7932039: OpenCA::PKCS7->parseDepth: There is a problem with the verification of the >chain ( error:2:unable to get issuer certificate). (6102) If I do the same procedure with an self signed certificate, it works fine. But i need a Sub CA. Perhaps the file of root certificate in chain-dir must have a special name? The rights are ok, for testing i set them to 777. Can anybody help me? Thank you a lot for support!!!!!!!!!!!!! Ciao, Carsten -- NEU F�R ALLE - GMX MediaCenter - f�r Fotos, Musik, Dateien... Fotoalbum, File Sharing, MMS, Multimedia-Gru�, GMX FotoService Jetzt kostenlos anmelden unter http://www.gmx.net +++ GMX - die erste Adresse f�r Mail, Message, More! +++ ------------------------------------------------------- This SF.Net email sponsored by: ApacheCon 2003, 16-19 November in Las Vegas. Learn firsthand the latest developments in Apache, PHP, Perl, XML, Java, MySQL, WebDAV, and more! http://www.apachecon.com/ _______________________________________________ Openca-Users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/openca-users
