I'm using the openssl req command with the -config openssl.cnf and -extensions set at in this case v3_ca, however, the end generated CSR pem file does not appear to contain the extensions at all. I view the file with "openssl req -noout -text -verify -in xxxxxreq.pem".
Any ideas? or have I really missed something? Another item, is the challengePassword always visible in a CSR? Appreciate any pointers...thanks! Oliver Pawellek Senior IT Project Manager Redmax Group International Limited. Email: [EMAIL PROTECTED] ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]