Re: [Openca-Users] LOA

Fri, 14 Apr 2006 06:40:08 -0700

Because I don't know the purpose of LOA very clearly,so I disable this option on our CA interface.-:)
 
but I think the porpose of LOA is link to the certificate policy,you can see the configuration loa.xml.there are some text about every level.maybe  this file can help you to understand LOA.
 
Blow it is a part of this file:
*********************

<level>10</level>
                <name>Test</name>
                <cert>
                        <ext>
                                <name>certificatePolicies</name>
                                <!--
                                    list all the policy OIDs here that are below
                                    and equevilant to this level of assurance for example
                                    loa basic has policy oid 1.2.3.4 , and basic is
                                    higher than test and rudimentary and basic, so the
                                    line would look like this
                                    <CP>
                                        <value>1.2.3.1</value>
                                        <value>1.2.3.3.5 </value>
                                        <value>@psec</value>
                                    <CP>
                                    ..... where
                                    1.2.3.1 is the oid for test loa and 1.2.3.2 is for
                                    Rudimantary. you get the picture NOTE they must be
                                    COMMA separated
                                -->
                                <CP>
                                        <value>1.2.3.3.4</value>
                                </CP>
                                <section>
                                        <name>psec</name>
                                        <policy_ID_tag> policyIdentifier</policy_ID_tag>
                                        <!--
                                            you can have multiple CPS URIs exmple
                                            <CPS>
                                                <URI>CPS.1="http:// url1"</URI>
                                                <URI>CPS.2="http://url2"</URI>
                                            <CPS>
                                        -->
                                        <CPS>
                                                <URI>CPS.1 ="http://some.url.org/cps"</URI>
                                        </CPS>

                                </section>
                        </ext>

***********************
 


 
2006/4/14, Christian Wittmer <[EMAIL PROTECTED]>:
Hi Yihua,

> yes,you can disable this option.
>
> you just comment these section in the configuration files,for example:
> pub.conf

Ok, I found it, thanks.
Can you tell me for what purpose LOA is needed ?

Thanks and best regards

Chris




-------------------------------------------------------
This SF.Net email is sponsored by xPML, a groundbreaking scripting language
that extends applications into web and mobile media. Attend the live webcast
and join the prime developer group breaking into this new coding territory!
http://sel.as-us.falkag.net/sel?cmdlnk&kid0944&bid$1720&dat1642
_______________________________________________
Openca-Users mailing list
Openca-Users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openca-users



--
Yihua Zheng

Reply via email to