Hi,
martin i still have a little doubt about how the openssl command is wrapped with with-nfast -M, could you give me some hints please? maybe the openssl command is wrapped with: /opt/nfast/bin/with-nfast openssl ca .... am i wrong?
yes, correct. Add the -M flag to make sure that you are not prompted for Operator Cards if no keys are usable.
by other hand martin, i would like to know if you could help me to load openssl ENGINE CHIL (ncipher) from an application in C++. i was studying openca to know how it got the keys stored in hsm, and you have explained me how it happens. what i really want to do is loading openssl engine CHIL in my graphical application when the user has to load privates keys stored in hsm for example to sign certificates (my software is a CA).
You should probably read the OpenSSL and/or mod_ssl source code on how to use engines from C/C++.
Most tools in the apps/ directory support an -engine argument. cheers Martin ------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 _______________________________________________ OpenCA-Devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openca-devel
