On Mon, Feb 24, 2003 at 11:34:02PM +0100, Robert Ramiega wrote:
I said partially because i have next problem =o) :
when i use Mozilla/Galeon to sign and approve cert request nothing
happens after i push this button. I think that i saw some sollution to
that but can't find it and there is no openca-users list archive.
Mozilla has no support until now to sign any content of HTML forms. Only Netscape 4.7x and Microsoft Internet Explorer can be used to sign requests. This is not a bug in OpenCA. It is a missing feature of Mozilla.
Is the above mentioned inability to sign and approve with Mozilla
related to those modules that were in /usr/local/share/perl ?
No.
Since i couldn't sign and approve this request i just approved it. Than when i (still using Mozilla) pushed Issue certificate button i got:
Error 6751 General Error. Error while issuing Certificate to panzer.int.zillion.pl (filename: /usr/local/stow/openca/var/tmp/0E.req).
OpenCA::OpenSSL returns errocode 7731071 (OpenCA::OpenSSL->issueCert: OpenSSL fails (256).)..
and at the same time this: Using configuration from /usr/local/stow/openca/etc/openssl/openssl/VPN_Server.conf Check that the request matches the signature Signature ok The Subject's Distinguished Name is as follows countryName :PRINTABLE:'PL' organizationName :PRINTABLE:'TDC Internet Polska' organizationalUnitName:PRINTABLE:'Trustcenter' commonName :PRINTABLE:'potato.int.zillion.pl' serialNumber :PRINTABLE:'14' ERROR: adding extensions in section default 19116:error:2206D06C:X509 V3 routines:X509V3_parse_list:invalid null name:v3_utl.c:319: 19116:error:2206B069:X509 V3 routines:X509V3_EXT_conf:invalid extension string:v3_conf.c:138:name=subjectAltName,section= 19116:error:2206B080:X509 V3 routines:X509V3_EXT_conf:error in extension:v3_conf.c:92:name=subjectAltName, value=
You forgot to set a subject alternative name. The default configuration of the OpenCA's roles in /usr/local/stow/openca/etc/openssl/extfiles/VPN_Server.ext requires that you set a subject alternative name. If you don't like to set a subject alternative name then you must remove the line which defines subjectAltName in VPN_Server.ext.
Best regards
Michael -- ------------------------------------------------------------------- Michael Bell Email (private): [EMAIL PROTECTED] Rechenzentrum - Datacenter Email: [EMAIL PROTECTED] Humboldt-University of Berlin Tel.: +49 (0)30-2093 2482 Unter den Linden 6 Fax: +49 (0)30-2093 2704 10099 Berlin Germany http://www.openca.org
------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf _______________________________________________ Openca-Users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/openca-users
