Hi,
I'm using openca-0.9.2-RC4, when i try to initialize the CA, if i put the email in the request i'm getting the DN with email in it, if i do not put the email in request, the "Subject Alternative Name" and "Issuer Alternative Name" are empty.
So, i want the DN without email, and the "Alternative Name" with email.
DN_WITHOUT_EMAIL "Y" are set in servers/ca.conf email_in_dn = no are set in openssl/openssl.cnf
In this message from the list
http://sourceforge.net/mailarchive/message.php?msg_id=7488508
Michael Bell suggest
"Got to OPENCADIR/etc/openssl/openssl.cnf. Set the subject alternative name for the v3_ca to the required emailaddress. Don"t add the
emailaddress to the subject of the new request."
I do that, but do not work, i have this message when i try to do the "Generate new CA Certificate Request"
Error Loading extension section v3_ca 3167:error:2207507C:X509 V3 routines:v2i_GENERAL_NAME:missing value:v3_alt.c:391: 3167:error:2206B080:X509 V3 routines:X509V3_EXT_conf:error in extension:v3_conf.c:92:name=subjectAltName, [EMAIL PROTECTED]
In openssl.cnf i change this [EMAIL PROTECTED]
subjectAltName=email:[EMAIL PROTECTED]
Michael -- ------------------------------------------------------------------- Michael Bell Email: [EMAIL PROTECTED] ZE Computer- und Medienservice Tel.: +49 (0)30-2093 2482 (Computing Centre) Fax: +49 (0)30-2093 2704 Humboldt-University of Berlin Unter den Linden 6 10099 Berlin Email (private): [EMAIL PROTECTED] Germany http://www.openca.org
-------------------------------------------------------
This SF.Net email is sponsored by: Oracle 10g
Get certified on the hottest thing ever to hit the market... Oracle 10g. Take an Oracle 10g class now, and we'll give you the exam FREE.
http://ads.osdn.com/?ad_id=3149&alloc_id=8166&op=click
_______________________________________________
Openca-Users mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/openca-users
