Hi,
I've used batch's interface in order to generate many certificates. Is it "normal" that there is not data of private key in my certificate cert.pem
Yes, "cert" contains the public part - so the private key SHOULD NOT be in this file...
If i do basic request in order to request a certificate, after validation ... I have a certificate with pem extension and which contains private key. If i do netscape request (spac) in order to request a certificate, after validation ... I have a certificate with pem extension but which contains not private key.
Batchprocessor creates certificate with pem and p12
extensions. The cert.pem is in ~/OpenCA/var/crypto/certs
The cert.p12 is in
~/OpenCA/var/bp/dataexchange/pkcs12/cert.p12
With cert.p12 and Openssl commands i can recover a
pem'certificate with private key data but they aren't
in cert.p12 of crypto/certs/
Many information about that.
ok the difference:
basic request server sided creates the keys on the server, IE/SPAKC creates the key in the browser ans only sends the certificatetion request to the OpenCA - so OpenCA never gets to know the private key.
The certs in crytp/certs contain only the public parts - see above
HTH
Oliver
-- Diese Nachricht wurde digital unterschrieben oliwel's public key: http://www.oliwel.de/oliwel.crt Basiszertifikat: http://www.ldv.ei.tum.de/page72
smime.p7s
Description: S/MIME Cryptographic Signature
