I set the following parameters in cmp.properties:
cmp.ra.caname=Example Server CA
My goal is:
allow certificate from CSR to be producted
without the need to specify a previously existent user and password .
a new end entity is automatically created for each new certificate, identified
by the CN extracted from the DN of the CSR.
I expected, (after setting parameters in cmp.properties),
that both or at least the second of the above conditions
would be verified, or, in other words:
or, at least that
If I try to submit CSR without an existent user and password,
the following message is issued:
"Non existent username. To generate a certificate a valid username and password must be supplied"
This sounds to be obvious but, when I supply a valid username and password,
and the certificate is correctly generated, anyway
NO NEW END ENTITY IS CREATED.
My question is:
Have I misunderstood the functionality of modifyied parameters ?
What is my mystake ?
Thank you very much
Your configuration of CMP is correct. However, the request does not seem to be coming through CMP but through the public web browser. How do you do exactly to submit the CSR?
You are right, I submitted request through public web interface.
I copy and paste the request or select the csr files in
Enroll --> Create Certificate from CSR.
I suspected that I didn't understand something important .
Can you please tell me how to submit request correctly or just
give me a link to an example procedure to use CMP ?
Thank you wery much
In www.ejbca.org/adminguide.html you can find a section about CMP. There you can find some more detailed information about how CMP works and what is supported/implemented in Ejbca, If you scroll down within this section, you can also find java-code samples of how to construct and send a CMP request and also a list of third-party software that can be used to send CMP requests to Ejbca.
The documentation in www.ejbca.org concerns the latest available version of Ejbca. To get the documentation specific to your version of Ejbca, run "ant doc" from the Ejbca catalog.
Let me know how it goes!
Sign up for the SourceForge newsletter:
You seem to have CSS turned off.
Please don't fill out this field.