Christopher Crowley wrote: > But, if someone would be kind enough to post the procedure they used for > creating the certificate that they use to sign certificate requests, it > would be very useful to me. Perhaps that way I would be able to generate a > certificate that would permit me to sign requests on the server.
This procedure should be used together with the DB module, for DBI
variants I let Michael to say what's needed to modify (it should be
in your INSTALL file within the package too... ).
I know it is not so an easy procedure... we'll try to make it easier...
1. Install the CA
2. Generate the CA certificate (priv key, request, etc... )
3. Use the script openca-newcert: this will issue a new certificate
4. Use the script openca-browserexp: this generate a .p12 file in the
outbound directory of the installed openca
5. Get the .p12 certificate and install it into Netscape.
NOTE: remember to install the CA certificate into Netscape or the
issued certificate will not get correctly verified and enabled for
signing ( exoport the cacertificate from the CA to the RAServer/
public server and then import it using the link "Get CA Certificate"
from the public server).
--
C'you,
Massimiliano Pala
--o-------------------------------------------------------------------------
Massimiliano Pala [OpenCA Project Manager] madwolf at cpan.org
madwolf at openca.org
http://www.openca.org madwolf at hackmasters.net
http://openca.sourceforge.net Mobile: +39 (0)347 7222 365
smime.p7s
Description: S/MIME Cryptographic Signature
