when you run ca to do the signing try using the -config option pointing to various
ssleay.cnf files for whatever options you need for the current ca sign ioperation
i.e. ca -in client_req.pem -out client_cert.pem -config ssleay_client_cert_config.cnf
or ca -in server_req.pem -out server_cert.pem -config ssleay_server_cert_config.cnf
Might want to read ca.1 in the docs directory too if you havewn't already.
Andrew Gray
The Open Group
+-------------------------------------------------------------------------+
| Administrative requests should be sent to [EMAIL PROTECTED] |
| List service provided by Open Software Associates, http://www.osa.com/ |
+-------------------------------------------------------------------------+
