Hi,
After full installed OpenCA-SNAP-20001121, I got two problems.
1. RAO:
Massimiliano answered in others' question, "cacert.der" will be
installed in RAServer directory, but I don't see how it could be
done. I copied "cacert.pem" from OpenCA directory and rename
it as "cacert.der".
Self-signed is okay and RAO approve pending requests is also okay,
but when I test "Test Certificate" link, it shows:
:
:
Signature: MIIGjwYJKoZIhvcNAQcCoIIGgDCCBn.....
( Over 100 characters, so it can pass Javascript
test.... )
Verification: Couldn't verify the signature
( After export from RA and import to CA, it says
"Invalid Signagure", I guess the above message tell
me why. )
:
2. LDAP:
OpenCA(RAServer CGI) adds an entry to LDAP Server like this:
dn: [EMAIL PROTECTED], OU=OpenCA Users, O=OpenCA
Organization, C=IT
Got an error ( Error Code 32 ).
I looked "perl-ldap" library, and it's dn is without Email field,
so I modified as following.
dn: OU=OpenCA Users, O=OpenCA Organization, C=IT
Add successful.....
But guys..... U know, Netscape uses email to search one's
certificate,
although we can add information ( without Email in dn ) into LDAP
server, but it
can't be retrieved by Netscape.....
What a disappointment!!!! >___<
begin:vcard
n:Chang;Liang-Hao
tel;home:(03)4376926
tel;work:(03)4563171-4707
x-mozilla-html:FALSE
org:ICQ: 48578759;Graduated Student of CYCU ICE
adr:;;;;;;
version:2.1
email;internet:[EMAIL PROTECTED]
title:Macleod (���J��)
fn:Liang-Hao Chang
end:vcard
