On Tue, 2009-02-10 at 14:43 -0500, Fu-Jyh Luo wrote: > Dear All, > > I was able to Initialization DB on openca v0.9.3-rc1 via GUI. I > installed openca 1.0.2 and login GUI as admin. I don’t see the > Initialization DB interface. > I checked mysql DB, I don’t see DB was Initialized. > > $ mysql -p > Enter password: > mysql> use openca; > Database changed > mysql> show tables; > > > How do I Initialization DB in OpenCA v1.0.2. <snip> I'm still getting used to 1.0.2 myself (and like it very much). If I recall, the initialization may have been moved to a different portion of the interface. Here is what we have in our internal documentation:
Start OpenCA (/usr/local/OpenCA/xxxx/etc/openca/openca_start) Connect via web browser to https://pki.mycompany.com/pki/ca Go to PKI Init & Config / Initialization / DB, Key and Cert Init Initialize the database Return to the DB, Key and Cert Init page Generate a new CA key take default values for key use the high security password – this will be used to sign all subsequent requests Return to the DB, Key and Cert Init page Generate a new cert request from the CA key Common Name = xxxx Organization Unit = xxxxx Organization = xxxxx Domain Component = xxxxx Domain Component = xxxxx Return to the DB, Key and Cert Init page Create a self-signed CA certificate Set the validity period to 7300 days Return to the DB, Key and Cert Init page Rebuild the CA chain Go to PKI Init & Config / Initialization / CA Administrator Create a new request User Identifier = xxxx E-mail Address = x...@mycompany.com Click Continue Certificate Group = xxxxx Certificate Template = RA Operator Key Generation Mode = Server Click Continue Key Strength = Base Enter an appropriate passphrase Click continue Click Generate Request Return to PKI Init & Config / Initialization / CA Administrator Issue the certificate After editing the request, click Issue Certificate Return to PKI Init & Config / Initialization / CA Administrator Handle the certificate Click on more info Select PKCS#12 from the Certificate and Keypair drop down widget Download to home directory Import the PKCS#12 package into Operator's browser, e.g., in Firefox, choose Edit / Preferences, choose Advanced, choose View Certificates, select the Your Certificates tab, choose Import, enter the key passphrase. Next, find the CA cert under Authorities, choose edit, and enable all faculties. Click on OK. Hope this helps - John -- John A. Sullivan III Open Source Development Corporation Street Preacher: Are you SAVED?????!!!!!! Educated Skeptic: Saved from WHAT?????!!!!!! Educated Believer: From our selfishness that hurts the ones we love and condemns us to an eternity of hurting each other. http://www.spiritualoutreach.com Christianity that makes sense ------------------------------------------------------------------------------ Create and Deploy Rich Internet Apps outside the browser with Adobe(R)AIR(TM) software. With Adobe AIR, Ajax developers can use existing skills and code to build responsive, highly engaging applications that combine the power of local resources and data with the reach of the web. Download the Adobe AIR SDK and Ajax docs to start building applications today-http://p.sf.net/sfu/adobe-com _______________________________________________ Openca-Users mailing list Openca-Users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openca-users
