> thats the easy way, but > if you generate a csr and want to have signed it by verisign > for example. > I don't think that you should have O=verisign in your csr, don't you ? > > So how to fix that ?
What is needed in your subject is defined by your policy. At the moment your policy is, that o=myCA is needed. So just disable that... look at the openssl files and in etc/servers/pub.conf. Regards Til
smime.p7s
Description: S/MIME cryptographic signature
