[Openca-Users] Failure to upload requests

Tue, 29 Jul 2003 23:30:00 -0700 

        Sorry for yet another post.  I have read Michael Bell's book on running
OpenCA several times but all is still not well in our labs.
        For testing purposes, we installed ca, ra and pub on the same
computer.  We've reinitialized the database in case we had made too many
mistakes on our first attempt with 0.9.1 on our RedHat 8.0 installation
with openssl-0.9.8.  Still the same problems.  We issued all the
initialization certificates just fine.  We then proceeded to the example
of the Web Server certificate requested through the pub interface as
outlined in Michael's book.
        First we noticed that there is no ra_node - only a ca_node.  I did not
see any separate make entries for an ra_node so I suppose this is the
way it is supposed to be now.
        When we tried to upload the web server CSR, we received three unusual
errors.  They all appear to be file failures.  The unusual points are
that:
1) they are for the RA_Operator and RA Web-Server certs (same serial
numbers) as created upon initialization as well as the new CSR.
2) they are trying to reference a file in a non-existent tmp directory. 
There are similarly named tmp directories but not this one.
3) the pathname seems odd because it includes a double slash, e.g.,
/usr/local/OpenCA/var/tmp/tmp_25914/_REQUEST//256.pkcs#10

        Is this because we are running the CA and RA on the same device and
thus do not need to, in fact, cannot upload and enroll data? We notice
that the CSR still shows up in the CA's list of approved CSRs.  Or is it
related to the fact that I cannot sign these requests when I approve
them as mentioned in a previous post?
-- 
John A. Sullivan III
Chief Technology Officer
Nexus Management
+1 207-985-7880
[EMAIL PROTECTED]



-------------------------------------------------------
This SF.Net email sponsored by: Free pre-built ASP.NET sites including
Data Reports, E-commerce, Portals, and Forums are available now.
Download today and enter to win an XBOX or Visual Studio .NET.
http://aspnet.click-url.com/go/psa00100003ave/direct;at.aspnet_072303_01/01
_______________________________________________
Openca-Users mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/openca-users

Reply via email to