Support Requests item #604181, was opened at 2002-09-03 16:40 You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=203152&aid=604181&group_id=3152
Category: Configuration: First-Time Startup Group: aolserver3_4 Status: Open Resolution: None Priority: 5 Submitted By: Umesh Vemuri (uvemuri) Assigned to: Nobody/Anonymous (nobody) Summary: openssl error Initial Comment: I am configuring openssl (using nsopenssl module) for AOL Server 3.4 and am reciving errors pertaining to the keyfile. The openssl configuration has worked with test download certs from thawte, but is not working with the "official" cert. When attempting to start AOL Server, I am reciving an error stating that "the keyfile is readable, make sure it is not passphrase-protected." I have also tested the cert-key pair with a standard ssl configuration and it works, which leads me to believe that the cert-key pair is valid. Any ideas? ---------------------------------------------------------------------- Comment By: Andrew Piskorski (apiskors) Date: 2002-09-03 16:48 Message: Logged In: YES user_id=43168 Umesh, you probably need to stip the passphrase out of your keyfile, so it will work with AOLserver. See my comment in this BBoard thread: http://openacs.org/bboard/q-and-a-fetch-msg.tcl?msg_id=0002jX Or, here's an example: To generate a self-signed cert. (which you don't need to do, of course) and then strip out the passphrase, I did: $ /usr/local/ssl/bin/openssl req -new -x509 -keyout key+pass.pem -out certfile.pem -days 3650 $ /usr/local/ssl/bin/openssl rsa -in key+pass.pem -out keyfile.pem ---------------------------------------------------------------------- You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=203152&aid=604181&group_id=3152
