> > /usr/bin/openca-addreq:
> > > No such file or directory
> > > Done.
> >
> > ... and the script continued on its merry way.
>
> I'm seeing the same thing. Checked in CVS, and it looks the same in there.
> Is this still the right way to generate RA certs?
Yes. I'm using another method for the initialization with OpenCA::DBI
(perhaps it works with OpenCA::DB too).
I think I'm not following; openca-newcert is indeed the correct mechanism, despite the missing script?
Is the sequence of things below something obvious, or does it require familiarity with the OpenCA internals?
--bob
1. install the RAServer/Public-GW on the CA-machine too
2. reconfigure the Public-GW so that the Public-GW write the requests
direct into the CA-DBs
3. approve the request on the CA
4. export the certs from the CA
5. reconfigure the RAserver/Public-GW to use their own databases
6. import the certs into the RAServer
7. download the cert from the public interface
