On 08/26/2014 01:22 PM, nidhal.kort wrote:
well I think I'm doing something wrong concerning the data base because
certutil -V /.../nkort/certif ==>certutil -V: nickname is required for this
command (-n).
Sorry, that was my fault, I forgot you need to specific a specific
certificate.
Also when I try to list the certificates in the current directory with
certutil -L -d .
I get certutil: function failed: security library: bad database.
I thought the database is just a repertory where I put my certificates (I
have cert.crt certificate, cert.key private key, a keystore and truststore
generated wih openssl and keytool).
How should I proceed to use my certificates and keys to create a correct
database.
You need to use certutil to create an NSS certificate database and
import any required certificates into that.
There is some online documentation for certutil:
https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/tools/NSS_Tools_certutil
E.g. to initialise a database:
mkdir my_cert_db
certutil -N -d my_cert_db -f cert.password
then assuming you want to add in a certificate for the signer of the
brokers certificate you would do:
certutil -A -n my.host.acme.com -t "CT,," -d my_cert_db -a -i
/path/to/cert.crt
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
