Hi,
There is nothing (that I could find) in the ocsp(1) doc on how to generate
OCSP responder certificates with openssl.
In the openssl.cnf you need:
[ ocsp_cert ]
extendedKeyUsage = OCSP Signing
then add "-extensions ocsp_cert" on the "openssl ca" command to generate
the cert.
Note the space
Hi,
I must have something wrong in the configuration file and there dont seem
to be samples to cover additional OIDs. I just want to know how to use the
'oid_section' in the openssl.cnf file correctly. Btw, I am simply adding
the OCSPsigning extendedKeyUsage attribute to the cert. I can do that
The sunstudio patch above was Solaris Sparc.
For the x86 equivilant, see
http://sunsolve.sun.com/search/advsearch.do?collection=PATCH&type=collections&max=50&language=en&queryKey5=120759&toDocument=yes
__
OpenSSL Project
Hi, I have need of certs for 3 clients, for some tests on
freeradius with a sniffer that it capture the input.
Therefore I want certs of test the type which already use,
generated with the script CA.all inside freeradius-1.1.2 sources.
How I can make 3 certs for distinct for the clients?
Is it pos
There is now a fix for sunstudio 11;
http://sunsolve.sun.com/search/advsearch.do?collection=PATCH&type=collections&max=50&language=en&queryKey5=120760&toDocument=yes
Sun's own bug summary:
6353992 openssl-0.9.7i test fails in run-time under -xO3 -xdepend
But considering the long history of -xd