Hi, I'm testing currently openxpki for SCEP enrollment, with SSCEP and Cryptlib.
When I'm trying an enrollment with SSCEP, every is OK, I get my signed certificate. I checking the workflow context and I can see that csr_subject_key_identifier is equal to signer_subject_key_identifier. I made the same test with another cryptographic library: Cryplib, but I get a failure status: Renewal request is for certificate from foreign realm! It's very strange. When I check the csr_subject_key_identifier and signer_subject_key_identifier they are different. I don't understand why these identifiers are different? Note: My CSR is self-signed in SSCEP and Cryptlib Thanks
_______________________________________________ OpenXPKI-users mailing list OpenXPKI-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openxpki-users
