I am trying to create my own certificates with "openssl genrsa ..." etc...
(ref:www.modssl.org/docs/2.5/ssl_faq.html)
and also creating my own CA certificate to sign the SSL server certificate
with.
I'm fine until server.csr needs to be signed. I use sign.sh and get an error
mesg
as follows:
*****************************************************************
maroubra:vekraft$ sign.sh server.crt
CSR not found: server.crt
maroubra:vekraft$ sign.sh server.csr
CA signing: server.csr -> server.crt:
Using configuration from ca.config
Enter PEM pass phrase:
Check that the request matches the signature
Signature ok
The Subjects Distinguished Name is as follows
.
.
.
Certificate is to be certified until Feb 14 06:11:38 2001 GMT (365 days)
Sign the certificate? [y/n]:y
1 out of 1 certificate requests certified, commit? [y/n]y
Write out database with 1 new entries
Data Base Updated
CA verifying: server.crt <-> CA cert
server.crt: /C=US/ST=CA/L=SJ/O=Spots/OU=IT/CN=maroubra.spots.com/E
[EMAIL PROTECTED]
error 7 at 0 depth lookup:certificate signature failure
************************************************************************
What kind of error is this?
Veronique
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
