Michael Bell wrote:
Second I don't know what is with your Cisco equipment but sscep is really sensitive for the subject of the certificate. If the subject of the issued certificate does not match the subject in the request then sscep does not accept the certificate.
Hmmm...the only difference I notice between the requests subject and the ceritificates subject is the serial number:
request: Subject: C=de, L=Aachen, O=accom GmbH u. Co KG, CN=dummy.dummy.net
certificate subject: /C=de/L=Aachen/O=accom GmbH u. Co KG/CN=dummy.dummy.net/SN=10
That cant be it, or?
This is the problem. SSCEP needs an exact match. To get a successful enrollment you must deactivate the addition of the serialnumber in OpenCA's configuration.
Michael -- ------------------------------------------------------------------- Michael Bell Email: [EMAIL PROTECTED] ZE Computer- und Medienservice Tel.: +49 (0)30-2093 2482 (Computing Centre) Fax: +49 (0)30-2093 2704 Humboldt-University of Berlin Unter den Linden 6 10099 Berlin Email (private): [EMAIL PROTECTED] Germany http://www.openca.org
------------------------------------------------------- This SF.Net email is sponsored by: IBM Linux Tutorials Free Linux tutorial presented by Daniel Robbins, President and CEO of GenToo technologies. Learn everything from fundamentals to system administration.http://ads.osdn.com/?ad_id=1470&alloc_id=3638&op=click _______________________________________________ Openca-Users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/openca-users
