Hi, I have question regarding the following line in the CA.all script:
openssl ca -policy policy_anything -out newcert.pem -passin pass:whatever -key whatever -extensions xpserver_ext -extfile xpextensions -infiles newreq.pem Does the use of the switch "-extensions" here (implying extended key usage), overrides some other key usages of the key? I ask this because when I print out the purpose of the certificate generated by CA.all script, it does not show the key usages such as Digital Signature etc and only shows TLS Web Server authentication. Whereas when I take -extensions part out, I get a whole list of key usages. Thanks, Bilal - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html