On Fri, 10 Sep 2004 11:26 am, Alexander Samad wrote: > Hi > > I manage my own ca and associated x509 certificates, now it is comming > up that they are expiring, I have kept the original req, how do I re > sign them, I tried re signing the original req but that fail. How do i > create a new certificate with the same common name, I tried this and it > said something about duplicate name and failed. > > Using debian unstable and openssl
Are you revoking the original certificates? If not, I'm pretty sure you will fail. openssl ca -revoke <your_cert>.pem Then you should be able to generate a new certificate from the request. Cheers, Seb. -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
