Re: Generating a cert request based on another certificate

Oliver Bode Mon, 09 Apr 2001 09:26:26 -0700
A more efficient way to decode a client certificate is to setup certificate
authentication on your server, use your certificate to enter it, send the
variables to cgi then pull out the $ENV{'SSL_CLIENT_S_DN'} variable and
create your certificate request from there.
https://www.ultrasecure.com/Admin/Somthing.cgi

As to how to make the request without using openssl....hmm you've got me
stumped. What would you use instead?


----- Original Message -----
From: "Eytan Segal" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Tuesday, April 10, 2001 2:05 AM
Subject: RE: Generating a cert request based on another certificate


> Thanks, but not good enough :-(.
> I'm after the code for performing this in one stroke (and with reasonable
> efficiency) - without running openssl exe and manipulating files.
>
> Eytan.
>
> -----Original Message-----
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]]On Behalf Of Oliver Bode
> Sent: Monday, April 09, 2001 4:56 PM
> To: [EMAIL PROTECTED]
> Subject: Re: Generating a cert request based on another certificate
>
>
> Sorry the commands would be to output as text of a certificate:
> openssl x509 -in cert.pem -out text.pem -text
> Then push the DN into a hash
> Make a temp config.cfg file
> Create a request using the config file
> openssl req -config config.cfg -new -keyout request.pem -out request.pem
> Then sign the request
>
> ----- Original Message -----
> From: "Eytan Segal" <[EMAIL PROTECTED]>
> To: <[EMAIL PROTECTED]>
> Sent: Tuesday, April 10, 2001 12:58 AM
> Subject: Generating a cert request based on another certificate
>
>
> > Hi,
> >
> > I want to write code that, given an x509 certificate, will generate a
> > certificate request with the exact same details (common name,
> organization,
> > serial number, validity etc.), only using my public key instead of the
> > original one.
> >
> > How can I do this?
> >
> > Thanks,
> > Eytan Segal
> >
> >
> > ______________________________________________________________________
> > OpenSSL Project                                 http://www.openssl.org
> > User Support Mailing List                    [EMAIL PROTECTED]
> > Automated List Manager                           [EMAIL PROTECTED]
>
> ______________________________________________________________________
> OpenSSL Project                                 http://www.openssl.org
> User Support Mailing List                    [EMAIL PROTECTED]
> Automated List Manager                           [EMAIL PROTECTED]
>
> ______________________________________________________________________
> OpenSSL Project                                 http://www.openssl.org
> User Support Mailing List                    [EMAIL PROTECTED]
> Automated List Manager                           [EMAIL PROTECTED]

______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    [EMAIL PROTECTED]
Automated List Manager                           [EMAIL PROTECTED]
Re: Generating a cert request based on another certificate

Reply via email to
