Hi Nicolas,
By the way, do you know if there is a way to change the CA certificate of an OpenCA installation ... I had to re-install the whole thing with a CA certificate based on an smaller RSA keypair.
it should be sufficient to replace the cacert.pem certificate in the var/crypto/cacert directory with the new one. You can use the "import CA certificate signed by another authority" (or similar) in the initialization menu of the CA node for this. Assuming you use a floppy for data exchange, do the following: - rename the PEM encoded CA cert to 'cacert.pem' - create the data exchange medium by running tar cf EXCHANGEMEDIUM cacert.pem Replace EXCHANGEMEDIUM with the device or file you configured for data exchange. Use the web frontend to import the new CA cert. cheers Martin ------------------------------------------------------- This SF.Net email is sponsored by the JBoss Inc. Get Certified Today Register for a JBoss Training Course. Free Certification Exam for All Training Attendees Through End of 2005. For more info visit: http://ads.osdn.com/?ad_id=7628&alloc_id=16845&op=click _______________________________________________ Openca-Users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openca-users
