for fully functional cisco-network-equipment we have to add some (two) more CSR und CRT Attributes: - unstructuredName - unstructuredAddress
they have this in there requests (at least the pix-firewall) and you also have to add in the certificate... so it has to be added at the: servers config (ra and ca) CSR_SUPPORTED_ATTRIBUTES "unstructuredName" "unstructuredAddress" and i think some changes for the ldap interface are necessary? it is not in the standard schemas and i don't know if the ldap code needs to be changed to have this attributes supported other network-hardware i don't know of special needs ;o) just cisco pix so far... i mean - usually i just change the server configs and its fine since i don't really need the certs at the ldap for the moment i will check the freeswaan-x.509 project, maybe they have already some overview... which hardware needs special attributes (maybe fw-1 and so on...) greetings dalini ------------------------------------------------------- This SF.net email is sponsored by: VM Ware With VMware you can run multiple operating systems on a single machine. WITHOUT REBOOTING! Mix Linux / Windows / Novell virtual machines at the same time. Free trial click here: http://www.vmware.com/wl/offer/345/0 _______________________________________________ OpenCA-Devel mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/openca-devel
