Martin,
Thanks for your answer.
I have successfully used SmartCard with OpenCA, that is not what I am
looking for, exactly.
You are right, the "Token Request" at the PUB interface is just for
entering data and does not make any cryptographic operation. A
certificate request of this kind (not a CSR yet, just the raw data) is
kept until the RA operator access it. When the RA operator opens the
request there is a form showing the data the user inserted at the PUB
interface when the request was made. This form have at its bottom a
"Generate Key" button which, as its names says, should be to generate
the key pair for the data and until that time the raw data becomes a
CSR. But, when the button is clicked, OpenCA opens a empty form, and the
data the user entered at the PUB interface is never shown. I just need
the user's data at that form. This way a user who, for example, does not
have how to get/buy/etc a SmartCard, can request a certificate and then
she can go the the RA office where the RA operator can give her the key
pair into a SmarCard.
Thanks again,
Jorge
Martin Bartosch wrote:
Hi,
I am new in this list and mainly a OpenCA user who needs some
changes in OpenCA.
After requesting a certificate using the "Token Request" link from
the PUB interface, and then opening this request from the RA
Interface, there is a "Generate Key" button at the bottom of the
form. I was expecting, when hitting this button, to get the data
inserted at the Pub interface when the request was made (at the PUB
interface). And what I had was I completly empty form to make a
completly new CSR which will substitute the one made before.
If this is a bug, as it seems to be, it would be a pleasure for me
to fix it, but I need help.
I haven't used this request type before, but if I am not mistaken the
"Token Request" is just a simple stub for inserting raw request data.
It does not generate keys at all, all it does is collect the required
textual input from the user and insert it in the database: Some
entity outside OpenCA must generate the corresponding SmartCard.
If you want to use SmartCards with OpenCA, you might want to use the
Browser Request which should start a key generation on the attached
SmartCard if the client system and browser are configured properly
(PKCS#11 plugin).
cu
Martin
-------------------------------------------------------
All the advantages of Linux Managed Hosting--Without the Cost and Risk!
Fully trained technicians. The highest number of Red Hat
certifications in
the hosting industry. Fanatical Support. Click to learn more
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=107521&bid=248729&dat=121642
_______________________________________________
OpenCA-Devel mailing list
OpenCA-Devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openca-devel
-------------------------------------------------------
All the advantages of Linux Managed Hosting--Without the Cost and Risk!
Fully trained technicians. The highest number of Red Hat certifications in
the hosting industry. Fanatical Support. Click to learn more
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=107521&bid=248729&dat=121642
_______________________________________________
OpenCA-Devel mailing list
OpenCA-Devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openca-devel
