I've been using OpenCA for a little over a year now, mainly in the context of managing Grid certificates. One change I've had to make in the code is to allow the signing of certificates in multiple DN domains. I was wondering, would anybody else find this a useful feature to be incorporated into OpenCA?
Our CA installation is located in the University of Melbourne and is being used for multiple subject domains:
1) The CA Base DN and subject domain...
*,OU=Experimental Particle Physics,O=University of Melbourne,C=AU
2) The international Belle collaboration subject domain...
*,O=Belle,O=Grid
2) The international Belle Testbed subject domain...
*,O=BelleTestbed,O=Grid
...specifically for users that have testbed only access such as developers who are not collaborators.
OpenCA 0.9.0-2, which I am running, does not support this as 'OpenCA/etc/servers/online.conf' and 'ldap.conf' only has one 'basedn' setting. On importing signed certs into the RA the error "Error ( dn conflicts with basedn )" caused by "addLDAPobject()" prevents the import!! If anybody is interested in my changes please email me.
Kind regards, Lyle.
________________________________________ Dr Lyle Winton Data Grid Research Fellow, School of Physics, University of Melbourne. Tel: +61 3 83445455 Fax: +61 3 93474783 [EMAIL PROTECTED]
------------------------------------------------------- This SF.net email is sponsored by: VM Ware With VMware you can run multiple operating systems on a single machine. WITHOUT REBOOTING! Mix Linux / Windows / Novell virtual machines at the same time. Free trial click here: http://www.vmware.com/wl/offer/345/0 _______________________________________________ Openca-Users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/openca-users
