The screen where I'm supposed to paste the certificate file says: "Please insert the
certificate into the text box provided. The certificate needs to be in PEM/Base64
encoding and less than 3kB in size, or the certificate will be rejected."
-- Dean
Michael Sierchio wrote on 2003-07-12 10:09:
>Dean Gibson (System Administrator) wrote:
>>We have an HP LJ 4600 with an internal JetDirect interface that provides an embedded
>>web server for administration. The web server has the ability to generate a CSR
>>(hplj.csr in the example below), which one can get signed and import the signed
>>certificate back into the web server.
>>
>>Since we feel that paying $$$ to a real CA to sign the CSR is a waste of money, we
>>thought we'd just try to sign it ourselves, so I did:
>>
>>openssl x509 -req -in hplj.csr -CA ultimeth.pem -days 3650 -set_serial 01 -out
>>hplj.crt
>>
>>where "ultimeth.pem" is a self-signed wildcard key/certificate previously generated
>>by openssl and working fine in Apache, Postfix, and IMAP servers.
>>
>>I then attempted to import (via cut-and-paste) the "hplj.crt" file back into the HP
>>JetDirect web server, but it doesn't like it ("The certificate entered was invalid.
>>Please try again and be sure to include the entire certificate correctly.").
>>
>>Now, I suspect that this is because the HP JetDirect web server checks to see if the
>>certificate was signed by other than a root CA.
>>
>>Any suggestions?
>
>Are you sure it's not expecting a PKCS#7 message?
>
>A DER X.509?
>
>etc.
>
>______________________________________________________________________
>OpenSSL Project http://www.openssl.org
>User Support Mailing List [EMAIL PROTECTED]
>Automated List Manager [EMAIL PROTECTED]
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
