[Openca-Users] Erstellen des ersten Administrators

Fri, 25 Mar 2005 03:15:51 -0800 

After succesfully finishing the Phase I of initializing the PKI (Erstellen der 
Zertifizierungsinstanz) the following problem occurred in Phase II (Erstellen 
des ersten Administrators):

"Fehler 6740
Allgemeiner Fehler Cannot create X.509 object from CA certificate (7411011). Es 
konnte kein neues X.509-Objekt erstellt werden, weil die Eingabedatei nicht zum 
Lesen ge�ffnet werden konnte."

Neither of the error numbers appear in openca-guide 
(http://cvs.sourceforge.net/viewcvs.py/*checkout*/openca/openca-0.9/docs/guide/openca-guide.html?rev=1.99#id2800482).
Below are some logs. I think they do not contain any usefull information.
How can I get more specific debugging messaging to find the problem ?

########################
less /magwien/openca/OpenCA/etc/log.xml
<openca>
    <debug>1</debug>
    <stderr>/magwien/openca/OpenCA/var/log/stderr.log</stderr>
 <log>
        <debug>1</debug>
        <slots>
            <slot>
                <name>sys_syslog</name>
                <class>*</class>
                <level>*</level>
                <logger>Syslog</logger>
                <type>Sys</type>


less stderr.log
initServer: BrowserSupportedLanguage(s) [de-at,en-us;q=0.7,en;q=0.3]
initServer: BrowserSupportedCharset(s)  [ISO-8859-1,utf-8;q=0.7,*;q=0.7]
select language: de
initServer: setLanguage: setEncoding for log return iso-8859-1
initServer: setLanguage: de_DE :: iso-8859-1
initServer: setLanguage: setEncoding for log return iso-8859-1
initServer: setLanguage: de_DE :: iso-8859-1
OpenCA::AC->Checking the channel ...
OpenCA::AC->    loading channel data ...
OpenCA::AC->        channel type ... mod_ssl
OpenCA::AC->    check channel data ...
OpenCA::AC->        channel type ... ok
OpenCA::AC->        security protocol ... ok
OpenCA::AC->        source ... ok
OpenCA::AC->        asymmetric cipher ... ok
OpenCA::AC->        asymmetric keylength ... ok
OpenCA::AC->        symmetric cipher ... ok
OpenCA::AC->        symmetric keylength ... ok
OpenCA::AC->Channel is ok
OpenCA::AC->Starting authentication ...
OpenCA::AC->    channel type ... mod_ssl
OpenCA::AC->    Try to get a session ...
OpenCA::AC->    checkACL ...
OpenCA::AC->    RBAC loaded
OpenCA::AC->    role loaded
OpenCA::AC->    operation loaded
OpenCA::AC->    owner loaded
OpenCA::AC->getAccess: real module: 0
OpenCA::AC->getAccess: real role: ca operator
OpenCA::AC->getAccess: real operation: initialization first certificates
OpenCA::AC->getAccess: real owner:
OpenCA::AC->getAccess: module: .*

... hundreds of similiar lines ...

OpenCA::AC->getAccess: owner: .*
OpenCA::AC->getAccess: access granted
OpenCA::AC->    access granted
OpenCA::AC->initToken: starting
OpenCA::AC->initToken: successfully finished
cmds->editCSR: loaName
OpenCA::OpenSSL->_stop_shell: try to stop shell
OpenCA::OpenSSL->_stop_shell: try to stop shell



########################
And here the syslog message: note the empty string between <message> and 
</message>

Mar 25 11:45:49 saron OpenCA PKI Log Message[28752]: <?xml version="1.0" 
encoding="iso-8859-1" ?> <log_message>     <class>cm
d</class>     <cmd>getstaticpage</cmd>     
<id>111174754968928673741123493389097625764220</id>     
<iso_timestamp>2005-03-25
10:45:49</iso_timestamp>     <level>info</level>     <message></message>     
<session_id>6f3273db308df4ab23569c39a70ea79f</se
ssion_id>     <timestamp>2005-m�r-25 10:45:49</timestamp> </log_message>


-------------------------------------------------------
SF email is sponsored by - The IT Product Guide
Read honest & candid reviews on hundreds of IT Products from real users.
Discover which products truly live up to the hype. Start reading now.
http://ads.osdn.com/?ad_ide95&alloc_id396&op=click
_______________________________________________
Openca-Users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openca-users

Reply via email to