you should have a look at:but with basicConstraints = CA:false keyUsage = cRLSign, keyCertSign nsCertType = sslCA, emailCA
OpenCA/etc/openssl/extfiles and there in the corespondending config file - regarding type of issued cert - like vpn-server or web-server and so on... every type has its own configuration
there is also another subdirectory:
OpenCA/etc/openssl/openssl - where some other options like special paths an so on can be set...
the file OpenCA/etc/openssl/openssl.cnf is basically only for the ca certificate not for issued ones... they can be individuelly configured in the above stated subdirectories - so please check them out ;o)
this is for 0.9.2 but i think - this structure should be the same for 0.9.1
i hope that helps... good night
greetings dalini
------------------------------------------------------- This SF.net email is sponsored by: IBM Linux Tutorials. Become an expert in LINUX or just sharpen your skills. Sign up for IBM's Free Linux Tutorials. Learn everything from the bash shell to sys admin. Click now! http://ads.osdn.com/?ad_id=1278&alloc_id=3371&op=click _______________________________________________ Openca-Users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/openca-users
