[Openca-Users] Steps to setup OpenCA??

Wed, 24 Apr 2002 06:55:22 -0700 

Hi, I have a question about the setup for setting-up or initialization
of OpenCA

1. Configure with:

./configure \
  --with-httpd-user=apache \
  --with-httpd-group=apache \
  --with-httpd-fs-prefix=/home/httpd \
  --with-web-host=secure.tfmx.com \
  --with-ca-organization="Teleformix LLC" \
  --with-ca-country=US \
  --with-ca-locality="Illinois" \
  --with-ldap-host=cert.tfmx.com \
  --with-ldap-port=389 \
  --with-ldap-root="cn=root,o=Teleformix LLC,c=US" \
  --with-ldap-root-pwd="secret" \
  --prefix=/usr/local \
  --with-service-mail-account="[EMAIL PROTECTED]"

2. Make:

make
make ca
make install-ca
make ext
make install-ext

Yes, I am putting this on one computer.

3. Configure Apache.

4. Enter the CA server page and go to the "Initialization" menu and then
"Initialize the Certificate Authority".  From there run these as they
are listed:

        A. Initialize Database
        B. Generate new CA secret key
        C. Generate new CA Certificate Request (use generated secret            key)
        D. Generate Self Signed CA Certificate (from altready generated
                request)
        E. Rebuild CA Chain
        F. Export Configuration

5. From the main CA server page go to the "Initialization" menu and then
"Create the initial administrator".

        A. Create a new request

        Submit the certificate request with role: CA Operator

        B. Edit the request
        C. Issue the certificate

        NOTE: For some reason it can't find the "pwd.html" page so I    have to
create a "ln -s $PWD ca" within the /home/httpd/htdocs/ca       directory.

        D. Handle the certificate

6. From the main CA server page go to the "Initialization" menu and then
Create the initial RA certificate".

        A. Create a new request

        Submit the certificate request with role: webserver

        B. Edit the request
        C. Issue the certificate
        
        NOTE: Same thing happens, "pwd.html" page not found.  Have to   create
that symbolic link.

        D. Handle the certificate

7.  Now what?  I can't find the certificate or the key needed for
apache's RA server configuration.  Also, when exporting certificates
from the CA server they all seem to disapear from the database yet the
certificates in .pem format are still there.  They show in index.txt
file and serial number is 3.

What am I doing wrong here?


_______________________________________________
Openca-Users mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/openca-users

Reply via email to