The screen where I'm supposed to paste the certificate file says: "Please insert the certificate into the text box provided. The certificate needs to be in PEM/Base64 encoding and less than 3kB in size, or the certificate will be rejected."
-- Dean Michael Sierchio wrote on 2003-07-12 10:09: >Dean Gibson (System Administrator) wrote: >>We have an HP LJ 4600 with an internal JetDirect interface that provides an embedded >>web server for administration. The web server has the ability to generate a CSR >>(hplj.csr in the example below), which one can get signed and import the signed >>certificate back into the web server. >> >>Since we feel that paying $$$ to a real CA to sign the CSR is a waste of money, we >>thought we'd just try to sign it ourselves, so I did: >> >>openssl x509 -req -in hplj.csr -CA ultimeth.pem -days 3650 -set_serial 01 -out >>hplj.crt >> >>where "ultimeth.pem" is a self-signed wildcard key/certificate previously generated >>by openssl and working fine in Apache, Postfix, and IMAP servers. >> >>I then attempted to import (via cut-and-paste) the "hplj.crt" file back into the HP >>JetDirect web server, but it doesn't like it ("The certificate entered was invalid. >>Please try again and be sure to include the entire certificate correctly."). >> >>Now, I suspect that this is because the HP JetDirect web server checks to see if the >>certificate was signed by other than a root CA. >> >>Any suggestions? > >Are you sure it's not expecting a PKCS#7 message? > >A DER X.509? > >etc. > >______________________________________________________________________ >OpenSSL Project http://www.openssl.org >User Support Mailing List [EMAIL PROTECTED] >Automated List Manager [EMAIL PROTECTED] ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]