Damon Smith wrote:
machine, but it's unclear from the documentation how to go about generating a certificate for the RA.
there is an initialization interface - there you can - beside init the ca, create the first certs for ra and operators
Am I supposed to generate a certificate on the CA, and use dataexchange
to transfer it to the RA, then do something on the RA to make it the
RA's certificate?
to make it the 'ras' certificate, you have to export it as mod_ssl and configure your apache to use it... so https gets enabled - thats what the ra-cert is used for
second you can enable x509-auth - so the operators have to have an valid certificate to login to restriced areas like ra, node and ldap interafaces
I have exported the CA cert to the RA, and that works well, but I can't
seem to approve requests on the RA and send them to the CA yet.
can you describe this a bit more in detail? what exactly doesn'T work, aprove with signing or just aproving and so on
greetings dalini
-- Ives Steglich Email: [EMAIL PROTECTED] System Administration Tel.: +49 (0)3677 - 69 4882 Fax: +49 (0)3677 - 69 4399
Fraunhofer Institute for Digital Media Technology Langewiesener Strasse 22 98693 Ilmenau Email (private): [EMAIL PROTECTED] Germany http://www.openca.org
-------------------------------------------------------
This SF.Net email sponsored by Black Hat Briefings & Training.
Attend Black Hat Briefings & Training, Las Vegas July 24-29 - digital self defense, top technical experts, no vendor pitches, unmatched networking opportunities. Visit www.blackhat.com
_______________________________________________
Openca-Users mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/openca-users
