When i import the configuration in the RA it says that he can't load the ca certificate into ldap, here is the output :
Importing CA-Certificates into ldap ...
Cannot load CA-certificate
This error seemt to be not related to LDAP but to OpenCA itsself...did you export/copy the Certificate to the RA ? Is the file of the certificate availbale in the filesystem and in the database ? This looks like OpenCA cannot find the CA Certificate on disk. Are the other steps workring ?
I exported the CA on a floppy disk as described in the howto gave with the openca tarball : docs/howto/wallus.txt
Export Configuration from CA
----------------------------
Put in a freshly formatted floppy,
make shure that wwwrun has access to /dev/fd0 (chown wwwrun /dev/fd0).
Open within the browser
http://ca.intern.results-hannover.de/ca_node
-> Dataexchange -> Enroll data to a lower level of the hierarchy -> Configuration
Then, i imported it in the RA as you could see in the previous post (and successfully except for LDAP), i can find the certificate in both CA and RA :
/usr/local/openca/openca/var/crypto/cacerts/bp_cert.pem /usr/local/openca/openca/var/crypto/cacerts/keybackup_cert.pem /usr/local/openca/openca/var/crypto/cacerts/log_cert.pem /usr/local/openca/openca/var/crypto/cacerts/cacert.cer /usr/local/openca/openca/var/crypto/cacerts/cacert.crt /usr/local/openca/openca/var/crypto/cacerts/cacert.pem /usr/local/openca/openca/var/crypto/cacerts/cacert.der /usr/local/openca/openca/var/crypto/cacerts/cacert.txt /usr/local/openca/openca/var/crypto/chain/cacert.crt
And
/usr/local/openra/openca/var/crypto/cacerts/bp_cert.pem /usr/local/openra/openca/var/crypto/cacerts/keybackup_cert.pem /usr/local/openra/openca/var/crypto/cacerts/log_cert.pem /usr/local/openra/openca/var/crypto/cacerts/cacert.cer /usr/local/openra/openca/var/crypto/cacerts/cacert.crt /usr/local/openra/openca/var/crypto/cacerts/cacert.pem /usr/local/openra/openca/var/crypto/cacerts/cacert.der /usr/local/openra/openca/var/crypto/cacerts/cacert.txt /usr/local/openra/openca/var/crypto/chain/cacert.crt
I can also browse the databases of the CA and the RA, they seem that they was correctly filled.
All the other steps are OK.
I doesn't really understand what's going wrong about the fact he can't load the certificate only for ldap.
-- Alexandre Ahmim-Richard [EMAIL PROTECTED] http://www.u-admin.org
------------------------------------------------------- The SF.Net email is sponsored by: Beat the post-holiday blues Get a FREE limited edition SourceForge.net t-shirt from ThinkGeek. It's fun and FREE -- well, almost....http://www.thinkgeek.com/sfshirt _______________________________________________ Openca-Users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openca-users
