I've been trying to get the "subjectAltName=email:move" directive to work in the "ca" command with no luck. I think this is a bug.
It seems that the only way I can get this to work is to manually set the line in the CA section to something like:
subjectAltName=email:[EMAIL PROTECTED]
This isn't very flexible if I must edit this file for every cert. I want to sign.
If I try to use either the "move" or "copy" options, the X509v3 Subject Alternative Name: extension ends up being <EMPTY>.
I have tried to get this to work two different ways: the first with the subjectAltName in the DN, and the second in the attributes section of the CSR.
I've tried with the subjectAltName having the "email:" prefix and without in both the DN and in the attributes.
For the life of me, I cannot get the "move" to work. Has anyone ever gotten this to work aside from hard-coding the email address in the CA section?
Joseph Bruni
smime.p7s
Description: S/MIME cryptographic signature
