Hi Oliver, I agree with you, I am just a newbie in this whole world of PKI and I went for the easiest way to make it work at the beginning and then start from there to "make it right". Thanks for the heads up,
You were right, just that all know what happened, the problems that I faced was because I messed up running the sampleconfig more than once, even when I removed everything and started again, the keys in the local folder were still there and that's why I got the bad results. I delete everything and start again the process from zero, delete docker containers and volumes and I clean my configuration. If you follow the quickstart and start the sampleconfig only **once**, works without problem. I have a last question Oliver; I am really grateful for your time and your fast response. I notice it that I can only make SCEP successful request with the first certificate (ca.crt-0) of the chain, for the others I got a verification error. When I looked at some information about the certificates, I saw that the ca.crt-0 has as usage: "Digital Signature, Key Encipherment", so this is a encrypted certificate. Can I use a non-encrypted certificate like the ca.crt-1 or ca.crt-2? Can this be configured? Or does it have to be always with the encrypted one? Thanks again. Best regards, Jairo R. Mejia Aponte | Embedded Software Linux Junior Engineer Netmodule | Hirschmann Automation & Control GmbH Location Eschborn | Frankfurter Str. 10-14 | 65760 Eschborn | Germany jairo.mejiaapo...@netmodule.com<mailto:benjamin.k...@netmodule.com> | www.netmodule.com<http://www.netmodule.com/> | www.belden.com<http://www.belden.com/>
_______________________________________________ OpenXPKI-users mailing list OpenXPKI-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openxpki-users
