Hi, > As I understand from this - CA (in most cases) must have key usage > extension > and CA/end user certificates which have key usage ext. MUST have it > marked > critical. By default OpenCA certificates are issued with non critical > extensions. Is this bug in OpenCA or those certificates profiles > are defined > only as examples?
consider the predefined Certificate Roles as examples and/or templates. For a serious CA installation you will have to define your own profiles according to your policy. For test scenarios the profiles included suffice for evaluating the basic use cases. cu Martin ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys -- and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Openca-Users mailing list Openca-Users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openca-users