> > Ok, reading the documentation I note that in the batch process I can > > specify user data for the final certificate, but it's not so clear if > > I can process a PKCS#10 file (this is because I'm seeking an > > interaction between the CMS and OpenCA). > > Basically you can - but you have to write your own bacth function. > The question is - why do you wnat to use pkcs10...
because the process we want to obtain is something like this: 1. On the CMS we make a GenKey on the Smartcard 2. On the CMS the Smartcard does a SignPKCS#10 3. The CMS sends the PKCS#10 to the CA 4. The CA, starting from the PKCS#10, generates the certificate by signing it using an HSM 5. The CA returns the certificate to the CMS (in PKCS#12 format) and pubblish the certificate on LDAP 6. The CMS writes the certificate on the Smartcard -- Diego de Felice ------------------------------------------------------- This SF.Net email is sponsored by Yahoo. Introducing Yahoo! Search Developer Network - Create apps using Yahoo! Search APIs Find out how you can build Yahoo! directly into your own Applications - visit http://developer.yahoo.net/?fr=offad-ysdn-ostg-q22005 _______________________________________________ Openca-Users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openca-users
