I've done like you said and, wow, it works :-) Many thanks! However, for my use with the only recompilation of OpenSSL 0.9.8 with the HSM patches, I was able to send UTF8 PKCS10s, but the generated certificates contained always T61 String text (and in LDAP I had always incorrect characters). So I've done a little change to /perl5/i386-linux-thread-multi/OpenCA/OpenSSL.pm:
- in sub issueCert I've commented the row with $command .= "-subj \"$subject\" " if ( $subject ); because if present, OpenSSL uses this subject for the certificate to issue. Instead, commenting this line, OpenSSL uses the subject in the P10 request and so it generates a certificate with UTF8 text. Moreover I've added also a $command .= "-utf8 "; row. > I didn't apply that patch, what I did was to: > - Install OpenSSL 0.9.8 > - Configure UTF8 in config.xml > - Run configure_etc.sh I've not done those 2 last steps > I don't know if this could work, but you could try it. thanks againg, it worked. Now I have special characters in certificates and LDAP. Now it's time for MySQL database, but it's not a very important issue. -- Diego de Felice ------------------------------------------------------- This SF.Net email is sponsored by: Power Architecture Resource Center: Free content, downloads, discussions, and more. http://solutions.newsforge.com/ibmarch.tmpl _______________________________________________ Openca-Users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openca-users
