Hi Heber,
Previously to generate the certificate request, I enabled Server
Gated Cryptography.
The process is described in
http://www.microsoft.com/security/tech/sgc/EnableSGC.asp
You need to edit the registry of your NT server, and create
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecutiryProviders\SCHANNEL\EnableSGC
as DWORD with value 1
If you continue experiencing problems tell me and I'll send you a copy of
openssl.cnf
See you.
On Fri, 14 May 1999, Heber Jorge Ramos Brandao wrote:
>
>
> Rafael Calzada Pradas wrote:
>
> > Hi,
> >
> > Check http://www.wherry.com/private-ca.html
> >
> > This page shows you how to sign a certificate request for IIS.
> >
> > mainly is:
> > x509 -req -CAcretaeserial -CA cacert.pem -CAkey privkey.pem -days 365 -in
>key.req -out key.cert
> >
> > Hope it helps.
> >
> > Rafa.
> >
> > >Hi all,
> > >
> > >Does anyone know how to sign requests (ssl server) generated by the MS
> > >IIS KeyManager, using "openssl ca"?
> > >
> > >I´m having problems with. The MS KeyManager says the signed certificate
> > >is invalid. I´ve been doing that for Apache with no problems.
> > >
> > >Thanks in advance,
> > >
> > >Heber.
> > >
>
> Hi Rafael,
>
> I followed the steps described on the page but the problem continues, I am receiving
>the following
> message:
>
> The certificate file is not valid
> Invalid password
>
> Do you have any other idea?
>
> Thanks for your help,
> Heber.
>
>
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
