Hi!
I prove the 2nd case. PKI entity gets the name "p" instead of "pkibase"; CN,
O, OU values are truncated to 1 character in the PKI Administrator pkcs#12.
No matter: wheter it's a clean Lenny install or upgraded from Etch (both
amd64); either newpki-client is run on the same host as newpki-server or on a
separate i386 Sqweeze (with "ssh -L 3333:localhost:3333
newpki-server-host") -- same result. For generated pkcs#12 cert package:
"openssl pkcs12 -nokeys -in pkibase-PKI_Administrator.p12"
yields:
Bag Attributes
localKeyID: FE 56 67 75 D7 A1 05 BB 5A D7 97 A0 3B B8 CC 42 88 EA BB EF
friendlyName: p - PKI Administrator
subject=/OU=P/O=S/CN=p - PKI Administrator/emailaddress=anatoly.ers...@fqdn
issuer=/OU=P/O=S/CN=p - Internal USERS CA
-----BEGIN CERTIFICATE-----
<skip cert>
-----END CERTIFICATE-----
Bag Attributes
friendlyName: p - Internal ROOT CA
subject=/OU=P/O=S/CN=p - Internal ROOT CA
issuer=/OU=P/O=S/CN=p - Internal ROOT CA
-----BEGIN CERTIFICATE-----
<skip cert>
-----END CERTIFICATE-----
Bag Attributes
friendlyName: p - Internal USERS CA
subject=/OU=P/O=S/CN=p - Internal USERS CA
issuer=/OU=P/O=S/CN=p - Internal ROOT CA
-----BEGIN CERTIFICATE-----
<skip cert>
-----END CERTIFICATE-----
__
Regards,
Anatoly
--
To UNSUBSCRIBE, email to [email protected]
with a subject of "unsubscribe". Trouble? Contact [email protected]
