Jorge,
Thanks for answering. Do you have any documentation about it?
If I generate the key manually and then I use sautil for creating
the key reference file, how I told OpenCA to use this file?
Below is part of my token.xml file, but I don't have the option
(that exists in OPenSSL tokens that are the reference to the key file:
<option><name>KEY</name><value>/usr/local/OpenCA/var/crypto/keys/log_key.pem
</value></option>
<token>
<name>CA</name>
<type>LunaCA3</type>
<mode>standby</mode>
<option>
<name>SHELL</name>
<value>/usr/local/ssl/bin/openssl</value>
</option>
<option>
<name>WRAPPER</name>
<value></value>
</option>
<option>
<name>UTILITY</name>
<value>/usr/lunasa/bin/sautil</value>
</option>
<option>
<name>SLOT</name>
<value>2</value>
</option>
<option>
<name>APPID</name>
<value>1</value>
</option>
<option>
<name>LOCK_FILE</name>
<value>/usr/local/OpenCA/var/tmp/ca_hsm_lock</value>
</option>
<option>
<name>OPENCA_SV</name>
<value>/usr/local/bin/openca-sv</value>
</option>
<option>
<name>TMPDIR</name>
<value>/usr/local/OpenCA/var/tmp</value>
</option>
<option>
<name>CONFIG</name>
<value>/usr/local/OpenCA/etc/openssl/openssl.cnf</value>
</option>
<option>
<name>RANDFILE</name>
<value>/usr/local/OpenCA/var/crypto/.rand</value>
</option>
</token>
Ing. Rodrigo H. Vázquez Cañás
Ingeniería
ComPlus S.A.
Lavalle 472 Piso 2 Oficina 206
TEL: (+5411) 43272267
[EMAIL PROTECTED]
www.complus-arg.com.ar
-----Mensaje original-----
De: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] En nombre de Jorge
Redondo Flames
Enviado el: Jueves, 03 de Agosto de 2006 16:05
Para: Ideas, tips and discussions about OpenCA installation and management.
Asunto: Re: [Openca-Users] Luna Integration
Rodrigo,
I have work with a HSM nCipher, and with it, OpenCA does not implement
the key generation procedure. It is supposed that this process is done
outside the application, as it should be. OpenCA is configured to work
with an already created key pair. Perhaps with LunaCA is the same.
Jorge
Rodrigo H. Vázquez Cañás wrote:
>HI everybody,
>
>I'm unsuccessfully trying to setup OpenCA integrated with LuncaCA.
>
>I'm having problems creating the root CA key pair. So I think that is a HSM
>initialization/login problem, so I'm looking for more documentation...
>
>Is it there any FAQ or integration guide?
>
>Best regards
>
>
>-------------------------------------------------------------------------
>Take Surveys. Earn Cash. Influence the Future of IT
>Join SourceForge.net's Techsay panel and you'll get the chance to share
your
>opinions on IT & business topics through brief surveys -- and earn cash
>http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
>_______________________________________________
>Openca-Users mailing list
>[email protected]
>https://lists.sourceforge.net/lists/listinfo/openca-users
>
>
>
-------------------------------------------------------------------------
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys -- and earn cash
http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
_______________________________________________
Openca-Users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openca-users
--
No virus found in this incoming message.
Checked by AVG Free Edition.
Version: 7.1.394 / Virus Database: 268.10.5/403 - Release Date: 28/07/2006
-------------------------------------------------------------------------
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys -- and earn cash
http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
_______________________________________________
Openca-Users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openca-users
