I found the problem... I had edited the sampleconfig.sh to change all "/DC=ORG/DC=OpenXPKI/OU=Test CA/CN=CA ONE" (and passwords as I don't want it easy for others even if I'm just taking it for a spin), but the created csr still had those in the subject...
Sorry for the noise (and being blind as I didn't chjeck the csr properly) Should I wipe the database and ca-one before trying to manually set up a new CA or can the be done "while running"? Oliver Welter skrev 2014-10-01 19:33: > Hi Christian, > > I just kicked up test vm using the current debian packages and it works > without problems. Debugging SSL errors is not that trivial, if you can > you send me an export of the database tables starting with workflow_* I > will try to figure out whats wrong. > > Oliver > > > Am 01.10.2014 um 18:06 schrieb Christian Huldt: >> I used sampleconfig.sh and no funny characters... >> >> Oliver Welter skrev 2014-10-01 16:04: >>> Hi Christian, >>> >>> 1) Did you install the sample configs and use the demo setup or did you >>> create your own config? >>> >>> 2) We still habe problems with Non-ASCII / Non-Latin chars in the >>> subject - did you enter non-latin chars, and if so can you please try >>> again with latin chars only. >>> >>> regards >>> >>> Oliver >>> >>> Am 01.10.2014 um 15:05 schrieb Christian Huldt: >>>> Hi, and thanks for some nice work! >>>> >>>> I just tried installing the debian packages as per >>>> https://openxpki.readthedocs.org/en/latest/quickstart.html >>>> >>>> When I proceeded to create a request, I got this below when I tried to >>>> approve the csr (as raop) >>>> >>>> I18N_OPENXPKI_TOOLKIT_COMMAND_FAILED; __COMMAND__ => >>>> OpenXPKI::Crypto::Backend::OpenSSL::Command::issue_cert; __ERRVAL__ => >>>> I18N_OPENXPKI_CRYPTO_CLI_EXECUTE_FAILED; __EXIT_STATUS__ => 256 >>>> >>>> Where would I begin to debug this? >>>> >> >> ------------------------------------------------------------------------------ >> Meet PCI DSS 3.0 Compliance Requirements with EventLog Analyzer >> Achieve PCI DSS 3.0 Compliant Status with Out-of-the-box PCI DSS Reports >> Are you Audit-Ready for PCI DSS 3.0 Compliance? Download White paper >> Comply to PCI DSS 3.0 Requirement 10 and 11.5 with EventLog Analyzer >> http://pubads.g.doubleclick.net/gampad/clk?id=154622311&iu=/4140/ostg.clktrk >> _______________________________________________ >> OpenXPKI-users mailing list >> [email protected] >> https://lists.sourceforge.net/lists/listinfo/openxpki-users >> > > > > > ------------------------------------------------------------------------------ > Meet PCI DSS 3.0 Compliance Requirements with EventLog Analyzer > Achieve PCI DSS 3.0 Compliant Status with Out-of-the-box PCI DSS Reports > Are you Audit-Ready for PCI DSS 3.0 Compliance? Download White paper > Comply to PCI DSS 3.0 Requirement 10 and 11.5 with EventLog Analyzer > http://pubads.g.doubleclick.net/gampad/clk?id=154622311&iu=/4140/ostg.clktrk > > > > _______________________________________________ > OpenXPKI-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/openxpki-users > -- Christian Huldt +46704612207 ------------------------------------------------------------------------------ Meet PCI DSS 3.0 Compliance Requirements with EventLog Analyzer Achieve PCI DSS 3.0 Compliant Status with Out-of-the-box PCI DSS Reports Are you Audit-Ready for PCI DSS 3.0 Compliance? Download White paper Comply to PCI DSS 3.0 Requirement 10 and 11.5 with EventLog Analyzer http://pubads.g.doubleclick.net/gampad/clk?id=154622311&iu=/4140/ostg.clktrk _______________________________________________ OpenXPKI-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openxpki-users
