AW: AW: [Openca-Users] Erstellen des ersten Administrators

Sun, 03 Apr 2005 23:56:27 -0700 

It seems, that generating the ca-cert failed the first time. I didn't recognize 
it, or it was not displayed.
However, doing it again (generate a ca-cert) solved the problem.

Thanks, best regards --Michi

-----Urspr�ngliche Nachricht-----
Von: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Auftrag von ives
steglich *EXTERN*
Gesendet: Mittwoch, 30. M�rz 2005 13:30
An: [email protected]
Betreff: Re: AW: [Openca-Users] Erstellen des ersten Administrators


Gsandtner Michael schrieb:

>OpenSSL Version : OpenSSL 0.9.7a Feb 19 2003
>  
>
this is quite old, but shouldn't be a problem

>[EMAIL PROTECTED] crypto]# ls -l cacerts/ certs/ chain/ keys/ reqs/
>cacerts/:
>total 0
>lrwxrwxrwx    1 openca   pki            10 Feb 25 10:08 bp_cert.pem -> 
>cacert.pem
>lrwxrwxrwx    1 openca   pki            10 Feb 25 10:08 cacert.cer -> 
>cacert.der
>lrwxrwxrwx    1 openca   pki            10 Feb 25 10:08 cacert.crt -> 
>cacert.pem
>lrwxrwxrwx    1 openca   pki            10 Feb 25 10:08 keybackup_cert.pem -> 
>cacert.pem
>lrwxrwxrwx    1 openca   pki            10 Feb 25 10:08 log_cert.pem -> 
>cacert.pem
>
>certs/:
>total 0
>
>  
>
not ok - no ca cert there

>chain/:
>total 4
>-rw-r--r--    1 openca   pki          1538 Feb 25 10:08 Makefile
>
>keys/:
>total 4
>lrwxrwxrwx    1 openca   pki             9 Feb 25 10:08 bp_key.pem -> cakey.pem
>-rw-r--r--    1 openca   pki          3311 Feb 25 10:13 cakey.pem
>  
>
>lrwxrwxrwx    1 openca   pki             9 Feb 25 10:08 keybackup_key.pem -> 
>cakey.pem
>lrwxrwxrwx    1 openca   pki             9 Feb 25 10:08 log_key.pem -> 
>cakey.pem
>
>  
>
ok; key is there

>reqs/:
>total 4
>-rw-r--r--    1 openca   pki          1720 Feb 25 10:38 careq.pem
>  
>
ok, request is there

>>After succesfully finishing the Phase I of initializing the PKI (Erstellen 
>>der Zertifizierungsinstanz) the following problem occurred in Phase II 
>>(Erstellen des ersten Administrators):
>>
>>"Fehler 6740
>>Allgemeiner Fehler Cannot create X.509 object from CA certificate (7411011). 
>>Es konnte kein neues X.509-Objekt erstellt werden, weil die Eingabedatei 
>>nicht zum Lesen ge�ffnet werden konnte."
>>    
>>
so this means - one thing is missing in step I, step I usaly consists of:
- generate a ca-key
- generate a ca-request
- generate a self-signed ca-cert

it looks like the last step didn't work out...
you can also check in the interface if an ca-certifcate is there at:
Information - there will ca informations too, you should see the
ca-cert shown there (if you select txt for example)...

first if the ca-certificate exits, you can issue and request certificates


greetings
dalini



-------------------------------------------------------
SF email is sponsored by - The IT Product Guide
Read honest & candid reviews on hundreds of IT Products from real users.
Discover which products truly live up to the hype. Start reading now.
http://ads.osdn.com/?ad_ide95&alloc_id396&op=click
_______________________________________________
Openca-Users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openca-users


-------------------------------------------------------
SF email is sponsored by - The IT Product Guide
Read honest & candid reviews on hundreds of IT Products from real users.
Discover which products truly live up to the hype. Start reading now.
http://ads.osdn.com/?ad_ide95&alloc_id396&op=click
_______________________________________________
Openca-Users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openca-users

Reply via email to