Konstantin Khrooschev wrote:
i think so - otherwise open-ca gives the option to get it already mod_ssl ready (means the pem formated key and cert) but this should work toomv key.pem key.pem.save openssl rsa -in key.pem.save -out key.pem is that anough ?
what shows you the scep command if you call it in a browser like:
http://domain/pub/cgi-bin/scep/scep for example
Error 700
*General Error*. This interface is only for SCEP.. ------------------------------------------------------------------------
thats ok, just to verify there are no configuration errors since at the recent cvs version there where some config option missing which gets shown here...
Server version: Apache/1.3.26 (Unix) Debian GNU/Linux
k, that i have too
so what does sscep do so far? do you got it working?
ah yeah - before i forget - hehe there is a little 'bug' in sscep
it calls the server by its ip, so vhosts get broken (but then you should get an 404 back..., check logs of your webserver)
i sometimes fell over this little issue of sscep...
(i will ask jarkko to make this configurable if ip or fqdn gets used)
in case of not, you are free to give (as far as you can go outside your network) the scep interface named at the test.conf a try
http://pki.fem.tu-ilmenau.de/operating/006/pub/cgi-bin/scep/scep
or
http://pki.fem.tu-ilmenau.de/operating/006/pub/cgi-bin/scep/pkiclient.exe
(this is an actual testing cvs version of openca running)
in future there will be a public testing installation found at: http://lab.x-dense.org/openca
greetings dalini
------------------------------------------------------- This SF.Net email is sponsored by BEA Weblogic Workshop FREE Java Enterprise J2EE developer tools! Get your free copy of BEA WebLogic Workshop 8.1 today. http://ads.osdn.com/?ad_id=4721&alloc_id=10040&op=click _______________________________________________ Openca-Users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/openca-users
