Pramila Rani wrote:
>
> Thanks a lot Robert,
>
> But... I am still wondering what it means in simple english ???
>
> All I understand is I probably need to have a new extension file called say
> "OCSP_Validator.ext" (say a copy of Web_Server.ext), and add the following
> line just below keyUsage line :
> extendedKeyUsage = OCSPSigning
The process is not fully correct. You should have first created on the CA
the new role (OCSP_Validator) and then you should have added the reported
line in the OCSP_Validator.ext file created on the CA. Export the configuration
on the RA as well and repeat the certification process (from the request
till the certificate issuing). It should fix the problem.
--
C'you,
Massimiliano Pala
--o-------------------------------------------------------------------------
Massimiliano Pala [OpenCA Project Manager] madwolf at cpan.org
madwolf at openca.org
http://www.openca.org madwolf at hackmasters.net
http://openca.sourceforge.net Mobile: +39 (0)347 7222 365
_______________________________________________________________
Don't miss the 2002 Sprint PCS Application Developer's Conference
August 25-28 in Las Vegas -
http://devcon.sprintpcs.com/adp/index.cfm?source=osdntextlink
_______________________________________________
Openca-Users mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/openca-users
