Oliver Welter wrote:
When I choose "autoselect certitificate" in Mozilla it will choose the wrong one, so all Certificate Siging is done with my User cert and preventing the automated issue on the CA side....i think mozilla uses just the cert with the highest serial from the matching ca - or the newest one, since it don't know what an user and an ra or ca-operator is, so the idea behind is, the newest or the cert with the highest serial must be the actual one..., in the manual list, also always the cert with the highest number is on top, so i think they just do this
so an idea could be to issue a certificate with an very high serial number and then set the serial counter of openssl back and 'lock' this used number (but i think this would happend outomatical, since openca detects, there is an cert with such an serial already, so you wont overwerite it, u just had to change the manual maybe)
yeah thats not very clean, but it may solve the your problem for the moment...
greetings dalini
------------------------------------------------------- This SF.Net email is sponsored by BEA Weblogic Workshop FREE Java Enterprise J2EE developer tools! Get your free copy of BEA WebLogic Workshop 8.1 today. http://ads.osdn.com/?ad_id=4721&alloc_id=10040&op=click _______________________________________________ Openca-Users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/openca-users
