Re: Ssl help
On Mon, 2007-03-12 at 13:52 -0400, Hillary Marek wrote: > I am trying to set up a Fedora Core 6 computer as a FreeRadius Server. > It is currently running, and authenticating via mac address. I also want > to set the same computer up as a CA using openssl. When I run the CA > script, I get the following output: > > > CA certificate filename (or enter to create) > > Making CA certificate ... > Generating a 1024 bit RSA private key > ..++ > ..++ > writing new private key to './CAtop/private/./cakey.pem' > Enter PEM pass phrase: > Verifying - Enter PEM pass phrase: > - > You are about to be asked to enter information that will be incorporated > into your certificate request. > What you are about to enter is what is called a Distinguished Name or a > DN. > There are quite a few fields but you can leave some blank > For some fields there will be a default value, > If you enter '.', the field will be left blank. > - > Country Name (2 letter code) [US]: > State or Province Name (full name) [**]: > * []: > Organization Name (eg, company) [**]: > Organizational Unit Name (eg, section) [MIS]: > Hillary Marek []: > [EMAIL PROTECTED] []: > > Please enter the following 'extra' attributes > to be sent with your certificate request > A challenge password []: > An optional company name []: > Using configuration from /etc/pki/tls/openssl.cnf > Enter pass phrase for ./CAtop/private/./cakey.pem: > I am unable to access the ../../CA/newcerts directory > ../../CA/newcerts: No such file or directory > > It seems to run finde until that last error. Any ideas? > All answers are appreciated. By the CA script, I assume you are talking about the script /etc/pki/tls/misc/CA, correct? Whether you are using that or the CA.pl script, both scripts make the assumption the the CA directory is called ../../CA. (Of course, that assumption only has a chance of being true if you run the scripts from within the /etc/pki/tls/misc directory.) If you changed the dir variable in the openssl.cnf file, then these things would be out of sync, which can cause problems. It looks like you might have change the dir variable to ./CAtop, is that correct? If so, then I think you need to change the CATOP variable in the CA script to be the same thing. -- John Guthrie [EMAIL PROTECTED] - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Ssl help
I am trying to set up a Fedora Core 6 computer as a FreeRadius Server. It is currently running, and authenticating via mac address. I also want to set the same computer up as a CA using openssl. When I run the CA script, I get the following output: CA certificate filename (or enter to create) Making CA certificate ... Generating a 1024 bit RSA private key ..++ ..++ writing new private key to './CAtop/private/./cakey.pem' Enter PEM pass phrase: Verifying - Enter PEM pass phrase: - You are about to be asked to enter information that will be incorporated into your certificate request. What you are about to enter is what is called a Distinguished Name or a DN. There are quite a few fields but you can leave some blank For some fields there will be a default value, If you enter '.', the field will be left blank. - Country Name (2 letter code) [US]: State or Province Name (full name) [**]: * []: Organization Name (eg, company) [**]: Organizational Unit Name (eg, section) [MIS]: Hillary Marek []: [EMAIL PROTECTED] []: Please enter the following 'extra' attributes to be sent with your certificate request A challenge password []: An optional company name []: Using configuration from /etc/pki/tls/openssl.cnf Enter pass phrase for ./CAtop/private/./cakey.pem: I am unable to access the ../../CA/newcerts directory ../../CA/newcerts: No such file or directory It seems to run finde until that last error. Any ideas? All answers are appreciated. Hazen Paper Company maintains and takes affirmative steps to protect and secure confidential, privileged, and proprietary information. If you have received such information in error, or information related to trademarks, or other confidential or proprietary information, Hazen Paper Company does not waive any claim it may have for such unintended delivery or damage arising from any use, copying, communication, transmission or failure to notify Hazen Paper Company of the error. Hazen Paper Company will exercise its rights against persons mistakenly or fraudulently communicating or receiving the above described or any other information not intended by Hazen Paper Company for transmittal by the Company. Although this email and any attachments are believed to be free of any virus or other defect that might affect any computer system into which it is received and opened, it is the responsibility of the recipient to ensure that it is virus free and no responsibility is accepted by ! the Hazen Paper Company or its affiliates either jointly or severally, for any loss or damage arising in any way from its use. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
