Hi,
In fact I had the same problem, where the validity duration should be 365 days according to the config. file , but it is acctually one month. I couldn't figure out what's the problem but I used the command line, as you mentioned, to get the one year.
Any explanation for this case will be appreciated.
Regads
-- Basel Katt
In fact I had the same problem, where the validity duration should be 365 days according to the config. file , but it is acctually one month. I couldn't figure out what's the problem but I used the command line, as you mentioned, to get the one year.
Any explanation for this case will be appreciated.
Regads
-- Basel Katt
----- Ursprüngliche Mail ----
Von: Dave Pawson <[EMAIL PROTECTED]>
An: openssl-users@openssl.org
Gesendet: Mittwoch, den 19. Juli 2006, 15:29:51 Uhr
Betreff: configuration file
Von: Dave Pawson <[EMAIL PROTECTED]>
An: openssl-users@openssl.org
Gesendet: Mittwoch, den 19. Juli 2006, 15:29:51 Uhr
Betreff: configuration file
I have
[ ca ]
default_ca = exampleca
[ exampleca ]
dir = /temp/ca
certificate = $dir/private/cacert.pem
database = $dir/index.txt
new_certs_dir = $dir/certs
private_key = $dir/private/ca1key.pem
serial = $dir/serial
default_crl_days = 7
default_days = 365
default_md = md5
policy = exampleca_policy
x509_extensions = certificate_extensions
preserve = yes #Incl all csr fields in cert
etc.
The CA cert is showing valid for one month,
rather than the 365 days I'm specifying.
Does it need to be in a different section
or must I use
#openssl -ca -days 365
to get the one year?
Still unable to find any full documentation on the config file.
regards
--
Dave Pawson
XSLT XSL-FO FAQ.
http://www.dpawson.co.uk
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
[ ca ]
default_ca = exampleca
[ exampleca ]
dir = /temp/ca
certificate = $dir/private/cacert.pem
database = $dir/index.txt
new_certs_dir = $dir/certs
private_key = $dir/private/ca1key.pem
serial = $dir/serial
default_crl_days = 7
default_days = 365
default_md = md5
policy = exampleca_policy
x509_extensions = certificate_extensions
preserve = yes #Incl all csr fields in cert
etc.
The CA cert is showing valid for one month,
rather than the 365 days I'm specifying.
Does it need to be in a different section
or must I use
#openssl -ca -days 365
to get the one year?
Still unable to find any full documentation on the config file.
regards
--
Dave Pawson
XSLT XSL-FO FAQ.
http://www.dpawson.co.uk
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
