Alex Tang wrote:
Using another Netscape 4.75 window, I went to the ra server and found theThere is only a message if something goes wrong. I know that this is not the optimum.
pending certificate request, and then chose to "approve and sign" the
request. It went through the signing steps, and i chose the RA Manager
ID to sign the request.
The resulting page says:
Request Approved
Description: Certificate Request Successfully approved.
Signature:
(Note that there is nothing after "Signature:").
This is correct. I think I have to explain how OpenCA works:If i then go into the ra or the pub server and look for certificates, i only see the CA Manager (serial number 1), and RA Manager (serial number 2). There is no certificate for the user i just created.
1. approve the request (state of request: APPROVED)
2. If you use OpenCA in an offline-configuration then you must export the request to the CA.
3. Issue the certificate via the CA-interface. There you can check the signature.
4. If you use OpenCA in an offline-configuration then you must export the cert to the RA.
pub-interface: PENDING_REQUEST
RA: APPROVED_REQUEST
CA: ARCHIVED_REQUEST and VALID_CERTIFICATE
Best regards
Michael
P.S. There is a file doc/lifecycle.ps in the new tarballs which shows the states in our system.
--
-------------------------------------------------------------------
Michael Bell Email (private): [EMAIL PROTECTED]
Rechenzentrum - Datacenter Email: [EMAIL PROTECTED]
Humboldt-University of Berlin Tel.: +49 (0)30-2093 2482
Unter den Linden 6 Fax: +49 (0)30-2093 2959
10099 Berlin
Germany http://www.openca.org
-------------------------------------------------------
This sf.net email is sponsored by:ThinkGeek
Welcome to geek heaven.
http://thinkgeek.com/sf
_______________________________________________
Openca-Users mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/openca-users
