Hi, openca usually writes very detailed log files in xml format in subdirectories below var/log/xml in the openca installation directory.
Maybe there are some hints in these logs. Maybe some hints I have written down for an installation of openca-1.1.1 compiled from source may be helpful, too - some other things are probably fixed in the meantime: On the command line check if the db user configured for the db access has enough permissions (this is probably true in your case, because at least the tables have been created, however this could also have been done by a different process during installation, which ran as a different user than the openca web service. Check privileges for different users in mysql) Locate the file containing the ca-certificate cacert.crt and remove all lines before "-----BEGIN CERTIFICATE-----". (perhaps this is fixed in 1.5.1) The automake-macro @dbmodule@ is not always replaced correctly. After installing replace all occurences of it by "DBI". (perhaps this is fixed in 1.5.1) In some places the ca certificate files are missing. Search for broken links and put another link at the place where they point to, in order to fix the issue (maybe this is only due to my special configuration). fix permissions on the file system level. Depending on your installation you might have to add the web server to the group under which you have installed the openca software (or vice versa) and make files/directories group-readable or group-writable. This all depends very much on your configuration and I don't know how the setup looks like in the precompiled centos-package. Maybe someone else who used this kind of installation can have a look. Finally, go to the web interface and rebuild cachain (but that's the next step when the ca_certificate appears in the db). best regards, Martin On 05/19/2014 10:05 AM, spd wrote: > Hi, > I did a clean install ( system and openCA - using > openca-base-1.5.1-linux-x64-CentOS-6.4.x86_64.run) I'am facing a problem > with inserting ca certificate into database. After creating CA certificate, > in the ca-certificate table there are only nulls: > > mysql> select * from ca_certificate; > +-------------+--------+------+------+------+-------+--------+------------+--- > -------+-----------+-----------------+---------------+-------------------+---- > ---+ > > | ca_cert_key | format | data | dn | cn | email | status | public_key | > > notafter | notbefore | suspended_after | revoked_after | invalidity_reason | > > rowid | > > +-------------+--------+------+------+------+-------+--------+------------+--- > -------+-----------+-----------------+---------------+-------------------+---- > ---+ > > | | | | | | | | | > 0 | 0 | NULL | NULL | NULL | > 1 | > +-------------+--------+------+------+------+-------+--------+------------+--- > -------+-----------+-----------------+---------------+-------------------+---- > ---+ > 1 row in set (0.00 sec) > > Any idea what could by wrong? > > > > ------------------------------------------------------------------------------ > "Accelerate Dev Cycles with Automated Cross-Browser Testing - For FREE > Instantly run your Selenium tests across 300+ browser/OS combos. > Get unparalleled scalability from the best Selenium testing platform available > Simple to use. Nothing to install. Get started now for free." > http://p.sf.net/sfu/SauceLabs > _______________________________________________ > OpenCA-Devel mailing list > OpenCA-Devel@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/openca-devel ------------------------------------------------------------------------------ "Accelerate Dev Cycles with Automated Cross-Browser Testing - For FREE Instantly run your Selenium tests across 300+ browser/OS combos. Get unparalleled scalability from the best Selenium testing platform available Simple to use. Nothing to install. Get started now for free." http://p.sf.net/sfu/SauceLabs _______________________________________________ OpenCA-Devel mailing list OpenCA-Devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openca-devel
