Hi Ted, Thanks for the help, but...
Here's the line I added to the openssl.conf file: [ CA_default ] unique_subject = no Here's the error message. Note the output about the unique subject? -------------------------------------------------------------------- Step 2: Sign the certificate -------------------------------------------------------------------- Using configuration from C:\Progra~1\OpenSSL\openssl.conf Loading 'screen' into random state - done Enter pass phrase for C:\CA\private\CAkey.pem: DEBUG[load_index]: unique_subject = "yes" Check that the request matches the signature Signature ok The Subject's Distinguished Name is as follows countryName :PRINTABLE:'US' stateOrProvinceName :PRINTABLE:'Connecticut' localityName :PRINTABLE:'Burlington' organizationName :PRINTABLE:'Prosoft' organizationalUnitName:PRINTABLE:'DS' commonName :PRINTABLE:'Frank' emailAddress :IA5STRING:'[EMAIL PROTECTED]' Certificate is to be certified until Nov 5 12:52:03 2008 GMT (365 days) Sign the certificate? [y/n]:y failed to update database TXT_DB error number 2 ----- Original Message ---- From: Bernhard Froehlich <[EMAIL PROTECTED]> To: openssl-users@openssl.org Sent: Monday, November 5, 2007 5:39:01 AM Subject: Re: ca client - failed to update database, TXT_DB error number 2 Frank Garber schrieb: > Hi Jorge, > > I got considerably farther and generated the server key, but am now > having a problem with the client key. I'm getting this error: > failed to update database > TXT_DB error number 2 > > Any thoughts? > This error is defined as DB_ERROR_INDEX_CLASH in txt_db.h. You are probably trying to generate another certificate for the same CN while openssl is configured to insist on unique CNs. Try setting "unique_subject = no" in the CA-section of your openssl.conf. Or revoke the previous certificates for the same CN before generating a new one. Hope it helps Ted ;) -- PGP Public Key Information Download complete Key from http://www.convey.de/ted/tedkey_convey.asc Key fingerprint = 31B0 E029 BCF9 6605 DAC1 B2E1 0CC8 70F4 7AFB 8D26
