Hi, > echo "0" | /opt/nfast/bin/with-nfast /usr/local/ssl/bin/openssl ca -gencrl > -keyfile rsa-rootkey -keyform engine -engine chil -name CA_default -out > /usr/local/lib/root-ca/crl/20040506104354.crl -config > /usr/local/lib/root-ca/etc/openssl.cnf
[...] > Which now creates the CRL without operator interaction. Note the > echo "0" which is a hack to make with-nfast happy that requires > the slot number to be entered. (Sigh) > Perhaps there is a way around it, I will have to figure this out. I just played with the tool, and /opt/nfast/bin/with-nfast -M seems to do the trick - it loads the token currently in the reader and does not ask for the slot number. Now I will try to figure out how to detect if the operator card set is logged in or out in the HSM. Cheers, Martin ------------------------------------------------------- This SF.Net email is sponsored by Sleepycat Software Learn developer strategies Cisco, Motorola, Ericsson & Lucent use to deliver higher performing products faster, at low TCO. http://www.sleepycat.com/telcomwpreg.php?From=osdnemail3 _______________________________________________ OpenCA-Devel mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/openca-devel
