Hello NG,
I successfully issued some user certificates on E4 Netkey Smartcards
(TCOS2.0) recently. But here there occured a problem concerning a
repeated keyusage.
In a normal environment an operator must be alerted, is somebody
requests a certificate and signs the request with a private key thats
corresponding public key is already known and exists in the database. So
far .... ok.
But in case of (TCOS) smartcards issued for example in Germany from
german TeleSec there is no possibility to generate a new keypair
directly on the card, and as far as I know there is no CSP that can
install an externally generated private key an that cards (and nobody
should want that).
But on these cards there exist several certificate storage buffers per
keypair ! So if a user likes to request for example an email certificate
and an efs certificate using the same keypair, the signing process fails
on the ca.
The question now is : Is there any integrated possibility to change this
behaviour ? If not, is it possible to change the code to change this
behaviour ?
Thx in advance
Jan Roesner
[EMAIL PROTECTED]
-------------------------------------------------------
SF.Net email is sponsored by:
Tame your development challenges with Apache's Geronimo App Server.
Download it for free - -and be entered to win a 42" plasma tv or your very
own Sony(tm)PSP. Click here to play: http://sourceforge.net/geronimo.php
_______________________________________________
Openca-Users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openca-users
