I have an offline CA machine. I have a "major" RA Server (n.1) Then I have 7 different "minor" RA Servers (n.2 to n.8).
I want each "minor" server to have a local database and no knowledge of the others.
Than I want "major" RA server to have a local DB, but be able to import and export data to/from the other RA. Mainly, if the RA Operator on RA fails to accept a request, I will "learn" about it at RA n.1 and sign it there.
Also, RA Server n.1 exchanges data with the other RA, and then it is the only one to exchange data to the CA.
Is this possible?
Can you give some help in configuring each one in this setup?
Thanks,
Michael Bell wrote:
Nuno Miguel Neves wrote:
I want to configure 8 different RA/public interfaces with openca-0.9.1-7.
I have to givem them different IDs, I know, but something is puzzling me.
If I request a certificate in PUB n. 3, How do the other RA know about it?
There are several different things:
1. It is not required that every RA know the request from Pub 3.
2. Which database organization do you plan?
2.1. one central online database
2.2. several parallel online database
2.3. a hierarchical organization of online databases
3. The serials cannot conflict.
4. Parallel databases only know this request if the request is sent from a higher database down to the lower databases during export.
And when I sign a request, how do I transfer that to the CA machine?
Via the normal dataexchange.
Do I have to configure dataexchange with every RA?
Again first you have to describe the database architecture and how do you want to organize your interfaces. The easiest way is a description of your plans.
Michael
--
[EMAIL PROTECTED] Dept. Informatica, Fac. Ciencias,
|\ | |\ | Tel: +351 21 7500528 Univ. Lisboa, Bloco C5, Campo Grande
| \|uno | \|eves Fax: +351 21 7500084 1700 Lisboa, Portugal
------------------------------------------------------- SF.Net is sponsored by: Speed Start Your Linux Apps Now. Build and deploy apps & Web services for Linux with a free DVD software kit from IBM. Click Now! http://ads.osdn.com/?ad_id=1356&alloc_id=3438&op=click _______________________________________________ Openca-Users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/openca-users
