[Openca-Users] Configuration OpenCA / SCEP

Wed, 04 May 2005 13:01:23 -0700 


Hello,

I'm in the process of creating a small PKI for my organisation,
The major use would be to authenticate IPsec VPN between Netscreen Boxes.

So i downloaded openca 0.9.2.2.
From this i builded some debian packages using a modified debian.tar.gz
found on
a ftp archive. ( Basicaly I added support for SCEP on OCSPD).
Here is the build string:
        ./configure --host=$(DEB_HOST_GNU_TYPE) \
                --build=$(DEB_BUILD_GNU_TYPE) \
                --mandir=\$${prefix}/share/man \
                --infodir=\$${prefix}/share/info \
                --prefix=/usr \
                --enable-ocspd \
                --enable-scep \
                --with-etc-prefix=/etc/openca \
                --with-lib-prefix=/usr/share/openca \
                --with-var-prefix=/var/lib/openca \
                --with-httpd-fs-prefix=/usr/share/openca \
                --with-httpd-user=www-data \
                --with-httpd-group=www-data \
                --enable-package-build \
                --disable-external-modules \
                --with-web-host=www.example.com

After that i installed the resulting packages (openca-ca, openca-doc,
openca-common, openca-node, openca-scep and openca-pub).

Next i configured almost everything and everything i needed seem to
works more or less.
But here i'm stuck with the scep module, i can't make it work.
Initialy i forgot to create an cert/key for him so i used the 'create
initial RA' function and
used the resulting cert/key for scep. But now i got the following
message when trying to
submit an cert using the NS scep capabilities:
OpenCA: General error trapped 6293017: There is a problem with the
configuration. A user can only be mapped to a role if the identification
uses certificate
s. at /usr/local/share/perl/5.8.4/OpenCA/UI/HTML.pm line 179.
Compilation failed in require at ./openca_start line 68.

Any idea ?
Regards,
Benoit Plessis





-------------------------------------------------------
This SF.Net email is sponsored by: NEC IT Guy Games.
Get your fingers limbered up and give it your best shot. 4 great events, 4
opportunities to win big! Highest score wins.NEC IT Guy Games. Play to
win an NEC 61 plasma display. Visit http://www.necitguy.com/?r=20
_______________________________________________
Openca-Users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openca-users

Reply via email to