Hi John,
Well took your suggestion and googled... I think I found it but want to
see what the group says:
A native Windows cert includes the following additional extensions
Authority Key Identifier
CA Version
Next CRL Publish
I was able to see in the openssl.cnf.template that AuthorityKeyIdentifier
existed in the crl_ext section but I'm unsure of the other 2. How to
implement?
It seems that "CA Version" is the most important as Windows uses that to
somehow identify the object within AD.
According to this article, this shows adding the OID's that I believe I
need:
http://archives.neohapsis.com/archives/openbsd/2001-08/2358.html
Has anyone else run into this?
-----------------------------------------------------------------
DAVID BLAINE, GCIA , CISSP
GDLS-C Lead Information Risk Manager (LIRM)
CSC
6000 E. 17 Mile Rd. Sterling Heights MI 48313
GIS | o: 586.825.7650 | c: 810.217.8041 | f: 586.825.8606 |
dblai...@csc.com | www.csc.com
This is a PRIVATE message. If you are not the intended recipient, please
delete without copying and kindly advise us by e-mail of the mistake in
delivery.
NOTE: Regardless of content, this e-mail shall not operate to bind CSC to
any order or other contract unless pursuant to explicit written agreement
or government initiative expressly permitting the use of e-mail for such
purpose.
------------------------------------------------------------------------------
This SF.net email is sponsored by:
SourcForge Community
SourceForge wants to tell your story.
http://p.sf.net/sfu/sf-spreadtheword
_______________________________________________
Openca-Users mailing list
Openca-Users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openca-users
