In message <[EMAIL PROTECTED]> on Tue, 3 Feb 2004 14:18:45 +0100 , Kohler Benjamin <[EMAIL PROTECTED]> said:
Benjamin.Kohler> Hi, Benjamin.Kohler> I have problems with sign a certificate. Benjamin.Kohler> Benjamin.Kohler> I do it with the following command: Benjamin.Kohler> openssl ca -name CA_default -config openssl.cnf -keyfile private/cakey.pem Benjamin.Kohler> -in newrequests/fooreq.pem -out foocert.pem -outdir newcerts/ Benjamin.Kohler> Using configuration from openssl.cnf Benjamin.Kohler> Enter pass phrase for private/cakey.pem: Benjamin.Kohler> unable to load certificate Benjamin.Kohler> 22158:error:0906D06C:PEM routines:PEM_read_bio:no start Benjamin.Kohler> line:pem_lib.c:632:Expecting: TRUSTED CERTIFICATE Benjamin.Kohler> Benjamin.Kohler> I don't understand what the problem is, i found nothing in the ml archiv and Benjamin.Kohler> in google. Benjamin.Kohler> My openssl.cnf is mostly default (only default_bits is 2048 and default_days Benjamin.Kohler> is 7300). You probably need to add the command option '-cert cacert.pem'. ----- Please consider sponsoring my work on free software. See http://www.free.lp.se/sponsoring.html for details. -- Richard Levitte \ Tunnlandsvägen 3 \ [EMAIL PROTECTED] [EMAIL PROTECTED] \ S-168 36 BROMMA \ T: +46-8-26 52 47 \ SWEDEN \ or +46-708-26 53 44 Procurator Odiosus Ex Infernis -- [EMAIL PROTECTED] Member of the OpenSSL development team: http://www.openssl.org/ Unsolicited commercial email is subject to an archival fee of $400. See <http://www.stacken.kth.se/~levitte/mail/> for more info. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]