Hi, I would like to share this tip in case anyone encounters similar problem to ours.
It happened following database initialization (NodeOps → Import/Export → RECOVERY→ Initialize Database) and restore (NodeOps → Import/Export → RECOVERY → Restore Database). When attempting to invoke dataexchange between RA and CA (NodeOps→Import/Export), nothing happened i.e. requests did not get placed in tar file and exported to CA, despite their presence in the RA database. Here is the output we were getting on the screen: Exporting approved REQUEST ... Exporting all necessary objects. Exporting archive ... Load required variables ... Changing to directory /usr/local/sandbox/var/openca/tmp/tmp_30647 ... Running the export command(s) ... /bin/tar -cvpf /usr/local/sandbox/var/openca/tmp/ca-down -C /usr/local/sandbox/var/openca/tmp/tmp_30647 . Archive created successfully. Test the archive ... /bin/tar -tvf /usr/local/sandbox/var/openca/tmp/ca-down Clean up ...Ok. The debug information I found in the log file was stating: "export-import.lib: 288 of APPROVED_REQUEST has not to be exported" (288 was the certificate serial number which I was unable to transfer from RA to CA). The export-import.lib: sub eximMustBeExported is indeed performing serial number ($key) verification on a .dbm file located in a directory PREFIX/var/openca/log/receive|enroll|download|upload: the code returns 1 if the $key does not exist, otherwise it returns 0 and the dataexchange does not take place. Moving or deleting this file (in our case 3_APPROVED_REQUEST.dbm) solved the problem. Hope this helps someone. Cheers, Margaret ------------------------------------------------------------------------------ Free Software Download: Index, Search & Analyze Logs and other IT data in Real-Time with Splunk. Collect, index and harness all the fast moving IT data generated by your applications, servers and devices whether physical, virtual or in the cloud. Deliver compliance at lower cost and gain new business insights. http://p.sf.net/sfu/splunk-dev2dev _______________________________________________ Openca-Users mailing list Openca-Users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openca-users
