Hi all !!! I got a problem when trying to issue the initial administrator certificate.
I can generate the request ok, but when trying to edit the request I get the following error... Configuration Error. Request not present in DB or the status of the request was changed!. but when trying to get the pending requests the certificate is there.. Serial Submit Name Submitted On Requested Role 256 [EMAIL PROTECTED],CN=Robson Albuquerque,OU=Internet,O=LabRedes,C=BR Wed Jun 26 17:16:00 2002 GMT CA Operator The main problem is when trying to issue the administrator certificate...the error is: Configuration Error. Error while opening /usr/local/OpenCA/var/crypto/certs/01.pem. Well, the version of CA I'm working is the latests snapshot 0624... Openssl version is the rpm 0.9.8.xxx in the ftp where the latest snap of ca is. I have tried to understand the meaning of the subjectAltName in openssl and *.ext files but I could not solve it. The ca_operator.conf is the default file generated by make install-ca. The error generated by openssl says: Using configuration from /usr/local/OpenCA/etc/openssl/openssl/CA_Operator.conf Check that the request matches the signature Signature ok The Subject's Distinguished Name is as follows countryName :PRINTABLE:'BR' organizationName :PRINTABLE:'LabRedes' organizationalUnitName:PRINTABLE:'Internet' commonName :PRINTABLE:'Robson Albuquerque' emailAddress :IA5STRING:'[EMAIL PROTECTED]' serialNumber :PRINTABLE:'01' ERROR: adding extensions in section default 19158:error:2206D06C:X509 V3 routines:X509V3_parse_list:invalid null name:v3_utl.c:319: 19158:error:2206B069:X509 V3 routines:X509V3_EXT_conf:invalid extension string:v3_conf.c:138: name=subjectAltName,section= 19158:error:2206B080:X509 V3 routines:X509V3_EXT_conf:error in extension:v3_conf.c:92:name=su bjectAltName, value= unable to write 'random state' Error Trapped: Error while opening /usr/local/OpenCA/var/crypto/certs/01.pem at /usr/local/Op enCA/lib/functions/misc-utils.lib line 20. Compilation failed in require at /usr/local/apache/cgi-bin/ca/ca line 193. I have changed the .conf files of both ca and ra to DN_WITHOUT_EMAIL to N and didn't help, as said by Massimiliano Any Ideas ? Regards ____________________________________ Robson de Oliveira Albuquerque Universidade de Brasília Engenharia Elétrica Consultor em T.I. e Redes Phone - 55 61 307-2308 R-238 e-mail - [EMAIL PROTECTED] Icq # - 5051831 ____________________________________ ------------------------------------------------------- This sf.net email is sponsored by: Jabber Inc. Don't miss the IM event of the season | Special offer for OSDN members! JabberConf 2002, Aug. 20-22, Keystone, CO http://www.jabberconf.com/osdn _______________________________________________ Openca-Users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/openca-users
