Hi Dave/Ger/Kyle n all Thanks for the inputs The problem got solved I used -config option to specify the location of openssl.cnf Then I followed steps specified on modssl site http://www.modssl.org/docs/2.8/ssl_faq.html#ToC29 and changed the default key location in httpd.conf file now its working thanks to all u guys1!! Regards Neerav Singh. -----Original Message----- From: owner-openssl-us...@openssl.org [mailto:owner-openssl-us...@openssl.org] On Behalf Of Dave Thompson Sent: Wednesday, May 20, 2009 5:30 AM To: openssl-users@openssl.org Subject: RE: error while executing make command (fixed) --> next: HTTPS with apache + mod_ssl issue > From: owner-openssl-us...@openssl.org On Behalf Of Neerav Singh > Sent: Tuesday, 19 May, 2009 03:37 <snip part I don't understand complaint> > I also tried using openssl as below > I generated the key as below > $ openssl genrsa -des3 -out ca.key 1024 <snip> > But when I try to generate Certificate it throws me error This is trying to generate a CSR (a REQUEST) not a cert. (It might well the first STEP in generating a cert.) > $ openssl req -new -key ca.key -out ca.csr > Using configuration from /dwh/bihome/webserver/openssl/ssl/openssl.cnf > Unable to load config info > Enter PEM pass phrase: > unable to find 'distinguished_name' in config > problems making Certificate Request > 8611:error:0E06D06A:configuration file routines:NCONF_get_string:no conf or environment variable:conf_lib.c:343: <repeated> This combination of error messages doesn't look quite right for the versions I have at hand to check, but: > I supplied the distinguished name in openssl.cnf file (as TTLMUMDEV-01.ttsl.com), > but still the same error. That name looks like it should be the commonName _field_ of the DN. The actual values of fields of the DN are specified in the config file IF in the initial/default section: prompt is set to no AND distinguished_name identifies the _section_ containing them. Otherwise distinguished_name identifies the section containing _prompts for_ the fields. Is that (either of those) the situation you have? ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
====================================== i-choose online store at www.tataindicom.com Your Comfort.Your Convenience.YourChoice. ====================================== DISCLAIMER: The information contained in this message (including any attachments) is confidential and may be privileged. If you have received it by mistake please notify the sender by return e-mail and permanently delete this message and any attachments from your system. Any dissemination, use, review, distribution, printing or copying of this message in whole or in part is strictly prohibited. Please note that e-mails are susceptible to change.TATATELESERVICES LTD. (including its group companies) shall not be liable for the improper or incomplete transmission of the information contained in this communication nor for any delay in its receipt or damage to your system. TATA TELESERVICES LTD. (or its group companies) does not guarantee that the integrity of this communication has been maintained nor that this communication is free of viruses, interceptions or interference.