Massimiliano Pala wrote:
>
> [EMAIL PROTECTED] wrote:
> >
> > Hello all,
> > the OpenCA-0.8.0-20010610 with openssl-SNAP-20010307 works fine as
> > CA-Server. But if i installed it as the full-raserver i got an error
> > when confirming a Cert-Request.
> >
> > raserver-error-log:
> > --------snip------------
> > Signature OK
> > Signature OK
> > Can't call method "verifyChain" on an undefined value at cmds/confirmReq
> > line 60.
> > Compilation failed in require at /var/www/cgi-raserver/RAServer line 177.
> > -------snip-------------
> >
> > Any Idea whats wrong here?
>
> Edit the config file cgi-raserver/conf/raserver.conf to point to the right
> sign/verify commands -- should be /usr/local/bin/openca-verify (but it
> could depend on your installation paths).
>
> This should fix your problem.
The two entries in raserver.conf point to the right verify and sign
programms. But the error still exists.
Is it important, that the Cert-Request is signed with a valid
Certificate by the RA-Operator? If so, how does it work to issue the
first certificates?
Is this right so far:
It starts with generating the root-CA-certificate (selfsigned) on the
CA-Server. This is then exported to the RAServer. The RAServer imports
it. Now a user can request a certificate through the PublicServer. But
till now there is no RA-Operator with a valid Cert to confirm the
request.
greetings
Sascha
--
******************************************************************
Sascha M�ller
Fachhochschule K�ln, Zentrum f�r Informationstechnologie (ZI),
zentrale Arbeitsstelle Multimedia (zAM)
50678 K�ln, Claudiusstr. 1, Tel: +49-221-8275-3935 Fax:-3131
mailto:[EMAIL PROTECTED], http://www.zi.fh-koeln.de/
PGP-Key: finger [EMAIL PROTECTED]
S/MIME Cryptographic Signature
