Hi, are you using HTTPS ?
Later, Max Pontus Engblom | DigiSSL Inc - Securing the web! wrote:
Hello!When I try to login to OpenCA's web interface with the role as CA Operator (username: admin password: mypasswordissecret) I get redirected to myhost.com/cgi-bin/pki/ca/ca?redir=1 And in stderr.log its no error! But in the XML cache log file it shows this: OpenCA::XML::Cache> Wed Oct 15 14:40:37 2008 UTC message: OpenCA::XML::Cache> Error 200: Server: Entity does not exist (filename: /usr/local/etc/openca/access_control/ca.xml, xpath: /access_control/login/loginpromp/0). How can I fix this? (Contect of ca.xml)--------------------------------cat //usr/local/etc/openca/access_control/ca.xml<openca> <access_control> <channel> <type>mod_ssl</type> <protocol>.*</protocol> <source>.*</source> <asymmetric_cipher>.*</asymmetric_cipher> <asymmetric_keylength>0</asymmetric_keylength> <symmetric_cipher>.*</symmetric_cipher> <symmetric_keylength>0</symmetric_keylength> </channel> <login> <type>passwd</type> <!-- x509-base login:<type>x509</type><chain>/usr/local/var/openca/crypto/chain</chain>passwd login: <type>passwd</type><database>internal</database> <passwd> <user> <name>root</name> <algorithm>sha1</algorithm> <digest>3Hbp8MAAbo+RngxRXGbbujmC94U</digest> <role>CA Operator</role> </user> <user>...</user> ... </passwd>no authentication: <type>none</type>--> <database>internal</database> <passwd> <!-- the initial user root has the passphrase rootyou can use the script openca-digest to create the passphrases if you want to add another user simply create a second user structure<user>...</user> --> <user> <name>admin</name> <algorithm>sha1</algorithm> <digest>sha1password-for-admin-WORKING :-)</digest> <role>CA Operator</role> </user> </passwd> </login> <acl_config> <acl>yes</acl> <list>/usr/local/etc/openca/rbac/acl.xml</list> <command_dir>/usr/local/etc/openca/rbac/cmds</command_dir> <module_id>0</module_id> <map_role>yes</map_role> <map_operation>yes</map_operation> </acl_config> </access_control> <token_config_file>/usr/local/etc/openca/token.xml</token_config_file> </openca>Its some sort of xpath error with the XML_cache :/ All things are set to be owned by the webserver and so on. Any solutions?---------------------------------------------------------Sincerly,Pontus Engblom [EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]> DigiSSL Inc http://www.digissl.eu/------------------------------------------------------------------------ ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/ ------------------------------------------------------------------------ _______________________________________________ Openca-Users mailing list Openca-Users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openca-users
--
Best Regards,
Massimiliano Pala
--o------------------------------------------------------------------------
Massimiliano Pala [OpenCA Project Manager] [EMAIL PROTECTED]
[EMAIL PROTECTED]
Dartmouth Computer Science Dept Home Phone: +1 (603) 369-9332
PKI/Trust Laboratory Work Phone: +1 (603) 646-9179
--o------------------------------------------------------------------------
People who think they know everything are a great annoyance to those of us
who do.
-- Isaac Asimov
smime.p7s
Description: S/MIME Cryptographic Signature
------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/
_______________________________________________ Openca-Users mailing list Openca-Users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openca-users
