Mark,
Thanks a lot for your reply. And it seems that this
is the problem.
But interestingly, the new one does not work for my
Win2K box in my lab. That is, if I use the new one
you offered, it won't give me a whole list of
Cryptographic Service Providers, just like what
happened to my Win2K box at home. The old one works
in my lab, but does not work at my home. I'll see if
the new one works for my home Win2K box when I get
home.
I use IE 6.0 for the Win2K boxes both at my home and
at my lab in school.
I am curious, what stuff in the Win2K operating system
determines the version of the classid I need to use
for my application?
Thanks.
The other Mark
--- [EMAIL PROTECTED] wrote:
> Yes but it also may mean you have the wrong
> xenroll.dll. In your script
> you probably have something like
>
>
> <OBJECT
>
> classid="clsid:43F8F289-7A20-11D0-8F06-00C04FC295E1"
> CODEBASE="/xenroll.dll"
> id=Enroll >
> </OBJECT>
>
> which is the old dll you may need to change to
>
>
> <OBJECT
>
> classid="clsid:127698e4-e730-4e5c-a2b1-21490a70c8a1"
>
> CODEBASE="/xenroll.dll"
> id=Enroll >
> </OBJECT>
> which is the new one
>
>
>
>
> Mark Liu <[EMAIL PROTECTED]>
> Sent by: [EMAIL PROTECTED]
> 02/02/03 02:49 PM
> Please respond to openssl-users
>
>
> To: [EMAIL PROTECTED]
> cc:
> Subject: Does this mean that I don't
> have any Cryptographic Service Provider in my
> system?
>
>
> I am working on an X509 public key certificate
> authentication project.
>
> I have an HTML file called apply_ie.html in my web
> application.
>
> When I tested this page on a Win2k box with
> tomcat4.1
> in my lab at school, it works great. The drop-down
> menu gives me a list of dozens of Cryptographic
> Service Providers.
>
> But when I try the same file on my Win2k box with
> tomcat4.1 at home, The drop-down menu shows no list
> of
> Cryptographic Service Providers. And when I click
> "OK" to submit, I get a pop-up window which says:
>
> Line 80: object does not support this attribute or
> method: 'encoder.HashAlgorithm'
>
> I checked line 80 of the file apply_ie.html which
> contains vbscript, and saw it is this line:
> encoder.HashAlgorithm = "MD5"
>
> Does this mean that I don't have any Cryptographic
> Service Providers installed on my Win2K box at home?
>
> But wait, before I tried this page with Tomcat, I
> did
> install Encpack_Win2000Admin_EN.exe, a cryptographic
> packet I downloaded from Microsoft, and restart my
> system.
>
> So, what's the problem? Any hint please?
>
> Here is source of apply_ie.html, which is a slight
> modification of Tomas' EJBCA apply_exp.jsp
>
> *** beginning of apply_ie.html ***
>
> <HTML>
> <HEAD>
> <TITLE>IE Certificate Request</TITLE>
>
> <object
>
> classid="clsid:43F8F289-7A20-11D0-8F06-00C04FC295E1"
> id="encoder">
> </object>
> <SCRIPT LANGUAGE=VBSCRIPT>
> <!--
> Function GetProviderList()
>
> Dim CspList, cspIndex, ProviderName
> On Error Resume Next
>
> count = 0
> base = 0
> enhanced = 0
> CspList = ""
> ProviderName = ""
>
> For ProvType = 0 to 13
> cspIndex = 0
> encoder.ProviderType = ProvType
> ProviderName =
> encoder.enumProviders(cspIndex,0)
>
> while ProviderName <> ""
> Set oOption =
> document.createElement("OPTION")
> oOption.text = ProviderName
> oOption.value = ProvType
>
> Document.CertReqForm.CspProvider.add(oOption)
> if ProviderName = "Microsoft Base
> Cryptographic Provider v1.0" Then
> base = count
> end if
> if ProviderName = "Microsoft Enhanced
> Cryptographic Provider v1.0" Then
> enhanced = count
> end if
> cspIndex = cspIndex +1
> ProviderName = ""
> ProviderName =
> encoder.enumProviders(cspIndex,0)
> count = count + 1
> wend
> Next
> Document.CertReqForm.CspProvider.selectedIndex =
> base
> if enhanced then
> Document.CertReqForm.CspProvider.selectedIndex
> =
> enhanced
> end if
> End Function
> -->
> </SCRIPT>
> </HEAD>
> <BODY onLoad="GetProviderList()" bgcolor="#ffffff"
> link="black" vlink="black" alink="black">
> <center>
> <FONT face=arial size="3"><strong>IE Certificate
> Request</strong></FONT>
> </center>
>
> <HR>
> Welcome to certificate enrollment. <BR>
>
> <HR>
> <FORM NAME="CertReqForm"
> ACTION="/x509/servlet/CertReq"
> ENCTYPE=x-www-form-encoded METHOD=POST>
> Please give your name and email, then click OK to
> submit your request.<BR>
>
> Name: <input type=text size=10
> name=clientname
> value="foo"><br>
> Email: <input type=text size=20
> name=clientemail value="[EMAIL PROTECTED]"><br>
>
> <P>Please choose the CSP you wish to use from
> the
> list below (the default is probably good):</P>
> <SELECT NAME="CspProvider">
> </SELECT></P>
>
> <INPUT TYPE="hidden" NAME="pkcs10" VALUE="">
>
> <INPUT type="button" value="OK" name="GenReq">
>
> </FORM>
>
> <SCRIPT LANGUAGE=VBS>
> Function CSR(keyflags)
> CSR = ""
> szName = "CN=6AEK347fw8vWE424"
> encoder.HashAlgorithm = "MD5"
> err.clear
> On Error Resume Next
> set options =
> document.all.CspProvider.options
> index = options.selectedIndex
> encoder.providerName = options(index).text
> tmpProviderType = options(index).value
> encoder.providerType = tmpProviderType
> encoder.KeySpec = 2
> if tmpProviderType < 2 Then
> encoder.KeySpec = 1
> end if
> encoder.GenKeyFlags = &h04000001 OR keyflags
> CSR = encoder.createPKCS10(szName, "")
> if len(CSR)<>0 then Exit Function
> encoder.GenKeyFlags = &h04000000 OR keyflags
> CSR = encoder.createPKCS10(szName, "")
> if len(CSR)<>0 then Exit Function
> if encoder.providerName = "Microsoft Enhanced
>
=== message truncated ===
> ATTACHMENT part 2 application/x-pkcs7-signature
name=smime.p7s
__________________________________________________
Do you Yahoo!?
Yahoo! Mail Plus - Powerful. Affordable. Sign up now.
http://mailplus.yahoo.com
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
