Hello Francois, > I've set up a offline node (CA only) and online node (Ra + > pub + ldap ...). When somebody click on the logout link from > the pub interface, then an error message is coming about no > acces control. Surprisingly, no logout.xml exits under cmds > directory...
That's because you don't have to login into the public part - no login -> no logout :-) If you enable a user and password in openca/etc/access_control/pub.xml(.template) the logout button makes sense and is fully functional. On the other hand you also could just delete the corresponding entry for the logout button in openca/etc/menu.xml(.template). > I would like also to know how i can sign a CSR request or a > certificate request from the RA. Only the not signed accept > operation is working...May i need to have from the browser a > ra-operator certificate created as user certificate ? You can login to the ca part directly and sign the certificate without having to sign the request. But you always have to login to the ca part so sign the certificate, the ra part is only to approve the request and to check the validity of the persons data who send it in. That's the concept of an PKI. Regards, Julian ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys -- and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Openca-Users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openca-users
