Thanks for help. I do not have yet a HSM.
At 19:38 22/07/2009, you wrote:
I haven't tried, but it's easy to know. Please post a CSR in base64 that you
produce in HSM and I will compare, posting both cases in text (one CSR made
in HSM and another made in openssl).
Or if you prefer I post one made in openssl and you use it to compare
Regards
shell session wrote:
>
> jav...@linex:~/Documents/openssl> cat inflinux2007_req.pem
> -----BEGIN CERTIFICATE REQUEST-----
> MIIC0TCCAjoCAQAwggFrMQswCQYDVQQGEwJNWDESMBAGA1UECBMJUXVlcmV0YXJv
> MRkwFwYDVQQHExBTYW4gSnVhbiBkZWwgUmlvMTIwMAYDVQQKEylQdWVydGFzIHkg
> RGlzZW5vcyBkZSBNYWRlcmEsIFMuQS4gZGUgQy5WLjEcMBoGA1UECxMTTWFudWZh
> Y3R1cmluZyBQbGFudDERMA8GA1UEAxMIaW5mbGludXgxETAPBgNVBAUTCDIwMDcx
> MTI1MSowKAYJKoZIhvcNAQkBFht2ZW50YXNwZG1AZ3J1cG9pbmZpbml0eS5jb20x
> HjAcBgkqhkiG9w0BCQITD1B1ZXJ0YXNJbmZpbml0eTEOMAwGA1UEERMFNzY4MDkx
> FTATBgNVBBQTDDQyNy0yNzItMjg4NTEgMB4GA1UEDxMXV29vZHdvcmtzIE1hbnVm
> YWN0dXJpbmcxIDAeBgNVBCkTF3d3dy5wdWVydGFzaW5maW5pdHkuY29tMIGfMA0G
> CSqGSIb3DQEBAQUAA4GNADCBiQKBgQClax9xP3IfkYK63MP2JZWidu91pnifzQlK
> 8dLEFuQkaTosDXz/EF4TpaQtRSvD4kjY5MHTj1nA+OmVNXjDlcRNpRTWv88BQt1B
> 8kc4U+gDf5oLCbEIu6kKHskur6eps5L5ExF8ktSBnYVNosEJIzJaW4d/tk/vFrTQ
> MswqA/N1JwIDAQABoCQwIgYJKoZIhvcNAQkHMRUTE3B1ZXJ0YXNpbmZpbml0eTEy
> MzQwDQYJKoZIhvcNAQEFBQADgYEAN+WUo0fe+BJUFQpESPdv070YBTKFSEmDb2kk
> hapuDG/WYXZ6zbcukhc+49uPeg4/oauthN9eabzdS1Ih+3II+eOXaPDxu+0NrzaB
> 9alpf06OCuBxnILCUqAqYiGEC4gDt7Ff1qwhV2uPJ5OfvQ5MaUOT9YzFJmCVRpfZ
> A4p2Gio=
> -----END CERTIFICATE REQUEST-----
> jav...@linex:~/Documents/openssl> openssl req -in inflinux2007_req.pem
> -text
> Certificate Request:
> Data:
> Version: 0 (0x0)
> Subject: C=MX, ST=Queretaro, L=San Juan del Rio, O=Puertas y
> Disenos de Madera, S.A. de C.V., OU=Manufacturing Plant,
>
CN=inflinux/serialNumber=20071125/emailAddress=xxxx/unstructuredName=PuertasInfinity/postalCode=76809/2.5.4.20=427-272-2885/2.5.4.15=Woodworks
> Manufacturing/name=www.puertasinfinity.com
> Subject Public Key Info:
> Public Key Algorithm: rsaEncryption
> RSA Public Key: (1024 bit)
> Modulus (1024 bit):
> 00:a5:6b:1f:71:3f:72:1f:91:82:ba:dc:c3:f6:25:
> 95:a2:76:ef:75:a6:78:9f:cd:09:4a:f1:d2:c4:16:
> e4:24:69:3a:2c:0d:7c:ff:10:5e:13:a5:a4:2d:45:
> 2b:c3:e2:48:d8:e4:c1:d3:8f:59:c0:f8:e9:95:35:
> 78:c3:95:c4:4d:a5:14:d6:bf:cf:01:42:dd:41:f2:
> 47:38:53:e8:03:7f:9a:0b:09:b1:08:bb:a9:0a:1e:
> c9:2e:af:a7:a9:b3:92:f9:13:11:7c:92:d4:81:9d:
> 85:4d:a2:c1:09:23:32:5a:5b:87:7f:b6:4f:ef:16:
> b4:d0:32:cc:2a:03:f3:75:27
> Exponent: 65537 (0x10001)
> Attributes:
> challengePassword :puertasinfinity1234
> Signature Algorithm: sha1WithRSAEncryption
> 37:e5:94:a3:47:de:f8:12:54:15:0a:44:48:f7:6f:d3:bd:18:
> 05:32:85:48:49:83:6f:69:24:85:aa:6e:0c:6f:d6:61:76:7a:
> cd:b7:2e:92:17:3e:e3:db:8f:7a:0e:3f:a1:ab:ad:84:df:5e:
> 69:bc:dd:4b:52:21:fb:72:08:f9:e3:97:68:f0:f1:bb:ed:0d:
> af:36:81:f5:a9:69:7f:4e:8e:0a:e0:71:9c:82:c2:52:a0:2a:
> 62:21:84:0b:88:03:b7:b1:5f:d6:ac:21:57:6b:8f:27:93:9f:
> bd:0e:4c:69:43:93:f5:8c:c5:26:60:95:46:97:d9:03:8a:76:
> 1a:2a
> -----BEGIN CERTIFICATE REQUEST-----
> MIIC0TCCAjoCAQAwggFrMQswCQYDVQQGEwJNWDESMBAGA1UECBMJUXVlcmV0YXJv
> MRkwFwYDVQQHExBTYW4gSnVhbiBkZWwgUmlvMTIwMAYDVQQKEylQdWVydGFzIHkg
> RGlzZW5vcyBkZSBNYWRlcmEsIFMuQS4gZGUgQy5WLjEcMBoGA1UECxMTTWFudWZh
> Y3R1cmluZyBQbGFudDERMA8GA1UEAxMIaW5mbGludXgxETAPBgNVBAUTCDIwMDcx
> MTI1MSowKAYJKoZIhvcNAQkBFht2ZW50YXNwZG1AZ3J1cG9pbmZpbml0eS5jb20x
> HjAcBgkqhkiG9w0BCQITD1B1ZXJ0YXNJbmZpbml0eTEOMAwGA1UEERMFNzY4MDkx
> FTATBgNVBBQTDDQyNy0yNzItMjg4NTEgMB4GA1UEDxMXV29vZHdvcmtzIE1hbnVm
> YWN0dXJpbmcxIDAeBgNVBCkTF3d3dy5wdWVydGFzaW5maW5pdHkuY29tMIGfMA0G
> CSqGSIb3DQEBAQUAA4GNADCBiQKBgQClax9xP3IfkYK63MP2JZWidu91pnifzQlK
> 8dLEFuQkaTosDXz/EF4TpaQtRSvD4kjY5MHTj1nA+OmVNXjDlcRNpRTWv88BQt1B
> 8kc4U+gDf5oLCbEIu6kKHskur6eps5L5ExF8ktSBnYVNosEJIzJaW4d/tk/vFrTQ
> MswqA/N1JwIDAQABoCQwIgYJKoZIhvcNAQkHMRUTE3B1ZXJ0YXNpbmZpbml0eTEy
> MzQwDQYJKoZIhvcNAQEFBQADgYEAN+WUo0fe+BJUFQpESPdv070YBTKFSEmDb2kk
> hapuDG/WYXZ6zbcukhc+49uPeg4/oauthN9eabzdS1Ih+3II+eOXaPDxu+0NrzaB
> 9alpf06OCuBxnILCUqAqYiGEC4gDt7Ff1qwhV2uPJ5OfvQ5MaUOT9YzFJmCVRpfZ
> A4p2Gio=
> -----END CERTIFICATE REQUEST-----
> jav...@linex:~/Documents/openssl>
>
>
Eduardo M.Cavalcanti wrote:
>
> In case I use a HSM to generate a certificate request is it possible
> to differentiate this cerificate request from a certificate request
> issued from plain openssl?
>
--
View this message in context:
http://www.nabble.com/cannot-create-openssl-master-certificate-on-my-Exchange2007-Server%21Help-needed%21-tp24583342p24616155.html
Sent from the OpenSSL - User mailing list archive at Nabble.com.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager majord...@openssl.org
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager majord...@openssl.org
