Not viewing Certificate Extension Data in the certificate

Mejat
2013-06-17
2013-07-04
  • Mejat

    Mejat - 2013-06-17

    Hi

    I have configured Certificate Extension Data but it is not viewing the finally generated certificate.

    I am using JBoss 5.1.0 server and EJBCA version is ejbaca 4.0.15

    I did the following step.

    1.Configured External OID in the certextensions.properties file (/home/user/ejbca_4_0_15/src/java)

    id1.oid=1.3.6.1.4.1.39661.1.22
    id1.classpath=org.ejbca.core.model.ca.certextensions.BasicCertificateExtension
    id1.displayname=Test-Name
    id1.used=true
    id1.translatable=false
    id1.critical=false
    id1.property.dynamic=true
    id1.property.encoding=DERPRINTABLESTRING
    id1.property.value=Test data

    2.After editing i executed the following command
    ant bootstrap (It will build and deploy into the jboss server)
    3.Start the jboss server.
    4.Access the admin page and i went to 'Edit Certificate Profile' .But there i didnt see 'Test-Name' filed.Could you please confirm here it should be displyed . right?
    5.I already checked the below properties in the End entity profile
    Custom certificate extension data [?] Use:checked. So the text box should be available in the add end entity page.It is working

    6.While creating a End entity i added the following in the Text Box(Certificate Extension Data )
    1.3.6.1.4.1.39661.1.22.value=Hello test.

    1. If i see in the edit and view mode , i can able to see this data .
      8.I went to public web page and generated the certificate (create keystore->entered username and password ) then generate certificate.It is automatically import into my Firefox(21.0) browser.
      9.Then i checked the certificate (Tools->option -> view certificate)
      certificate name :mejo4

    I just looking the detail section

    I can see Extension section but i cant see ant custom object identifier under this Extension

    Could you please tell me where i did the misconfiguration or why is is not displaying . I spend more time for finding this issue .I will be happy and i can go forward the ejbca implementation if i get proper solution.

    Thanks,
    Mejet

     
  • Tomas Gustavsson

    I did as you described and in Certificate Profiles I can see "Test-Name" under "Used Custom Certificate Extensions".

    Perhaps you just need to do "ant clean; ant bootstrap"?

    Cheers,
    Tomas


    PrimeKey Solutions offers commercial EJBCA and SignServer support subscriptions and training courses. Please see www.primekey.se or contact info@primekey.se for more information.
    http://www.primekey.se/Services/Support/
    http://www.primekey.se/Services/Training/

     
  • Mejat

    Mejat - 2013-06-24

    Hi Thomas,

    Thanks for your support .
    I already fix this issues .What i did is i changed the default database to mysql database and configured everything.it is working .

    So now i can able to create our own certificate and able to generate .This is the first step. So if i have any other issues i will comeback here .
    Have a nice day...

    Thanks
    Mejat

     
  • Mejat

    Mejat - 2013-07-04

    Hi Thomas,

    I need to know little bit more information about customizing the Certificate Extension Data.

    Right now the Certificate Extension Data are entered in the text area of end-entity profile .Instead of text area i need to populate each id with combo box or text area.
    ie testName :combo box
    testName2 :Text data
    is it possible to configure these type information in the properties file ?

    Thanks,
    Mejet joseph

     

Log in to post a comment.