On Thu, 31 Oct 2002, Michael Bell wrote: > Helen Zommer wrote: > > > I have a problem with user-downloading the issued certificate. When I fill > > the form specifying the serial number of the certificate, it says "the > > private key for this certificate is not found in the database". > > > > - I'm using Netscape 4.79 on Linux RedHat 7.3 (and also tried Netscape 4.77 > > on Irix 6.5 with the same effect) > > > > - I issued "basic request". The certificate was approved and created > > correctly, I imported it into RA server and can see it there. > > > > - I'm trying to download the certificate from the same machine and browser > > which I used to issue the request. > > > > - The openca version is 0.9.1-RC7 > > If you use "basic request" then the private key is generated on the > server. So your browser doesn't have the private key. You must download > a PKCS#12-file from the CA- or RA-interface. The passpharse is the PIN > which you entered during the generation of the request. You can import > this PKCS#12-file into your browser. That's all. > > Please take in mind that you must set the correct trust-options to the > CA-certificate before you can use your user-certificate.
Thank you ! this way it works, but then, the instructions to the user are misleading; he can't actually download the certificate he requested, and either he has to contact CA or RA authority and ask them to email him his certificate; or the notification email should contain the certificate and not the link... Cheers, Helen >^.^< |"| " "~~~ ------------------------------------------------------- This SF.net email is sponsored by: ApacheCon, November 18-21 in Las Vegas (supported by COMDEX), the only Apache event to be fully supported by the ASF. http://www.apachecon.com _______________________________________________ Openca-Users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/openca-users
