Hi Ralf, thank you for your hints. I think I have solved the problem now. I enabled debugging and put some extra lines to the scripts to get still more information. By this way I could very good see, that it was a problem with the access control you already mentioned. I don't know how, but once I had the idea that perhaps the module ids could be the problem.
Because i am running my PKI on three computers, I though every node interface must have its own module id, so i had: ca => 0 and ca_node => 3 ra => 1 and ra_node => 4 ldap => 2, pub => 32, scep => 33 and the node belonging to this three modules => 5 The first import / export works on the ra, because there is still no configuration of the role based access. But when I restart openca on the ra after the first import / export it reads in the configuration from the ca and now is not allow to do any exchanging any more because only module_id = 3 ist allowed. Thus I changed the node_module_id on every host to 3 and now it seems to work. Kind regards, Matthias On 10/13/06, Ralf Hornik Mailings <[EMAIL PROTECTED]> wrote: > Hi, > > > Matthias Alsmann schrieb: > > > Furthermore, the only thing I can do is to change the language of the > > ra node interface. Other actions like Administration -> Server Init > > also fail with exact the same error. > > The Error occours in the AC.pm while compiling getAccess() so it is a role > based access control problem. Try to find more information using debug in > etc/log.xml. > > Have you *completely* deleted the old OpenCA installation before reinstall > it, or did you overwrite the existing installation. There will be no > config files ovewritten. Have you compiled it from source, or did you use > a precompiled package like dep, or rpm? > > One simple solution would be disabling RBAC, if you do not need it. > > Ralf > > > ------------------------------------------------------------------------- > Using Tomcat but need to do more? Need to support web services, security? > Get stuff done quickly with pre-integrated technology to make your job easier > Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo > http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 > _______________________________________________ > Openca-Users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/openca-users > ------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 _______________________________________________ Openca-Users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openca-users
