Hi Johnny,
a private key exchange between nCpiher and Luna CA3/SA is not possible even if you can export the key from your nCipher. nCipher supports operational modes were you can extract the key from the HSM to software (disk) but this key is encrypted and can only be decrypted in a nCipher HSM with the appropriate administrative smartcards. HSMs are incompatible in this way.
Actually we are preparing support for more engines including nCipher. This week I completed the support for OpenSC. This should be much more complicated than the support for nCipher because a smartcard with a dynamic OpenSSL engine is much more complicated than an nCipher token because this token can use a built-in engine of OpenSSL (chil). The guy who develops the nCipher support is this week at holiday if I remember me right. So perhaps you should send a mail with nCipher in the subject to the list and ask for the state.
You can import old certificates via the export/import system of OpenCA. You have to create such an export manually with all your certificates and then you have to import it at the CA. Please search the mailing list archives. I sent at minimum two times a description how to do it.
Michael -- ------------------------------------------------------------------- Michael Bell Email: [EMAIL PROTECTED] ZE Computer- und Medienservice Tel.: +49 (0)30-2093 2482 (Computing Centre) Fax: +49 (0)30-2093 2704 Humboldt-University of Berlin Unter den Linden 6 10099 Berlin Email (private): [EMAIL PROTECTED] Germany http://www.openca.org
------------------------------------------------------- This SF.Net email is sponsored by the new InstallShield X.
From Windows to Linux, servers to mobile, InstallShield X is the
one installation-authoring solution that does it all. Learn more and evaluate today! http://www.installshield.com/Dev2Dev/0504 _______________________________________________ Openca-Users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/openca-users
