[Ejbca-develop] Getting error using CMP client with EJBCA

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

Hello,

I am using the CMP client patch for OPENSSL and trying to get the
certificate from the EJBCA VM deployed on the server

I have configured the following things
Pre-registered client with password authentication

   - Download the CA certificate to the client(downloaded the existing
   ManagementCA certificate  and have put this CA certificate in the location
   where CMP client code is compiled)
   - Add a new end entity in EJBCA(added an end entity with the username
   name: vmware and password:vmware)
   - Run the command

ejbca@ejbca:~/cmpforopenssl-code-766/src/openssl-client$ ./cmpclient
--server localhost --port 8080 --path ejbca/public/cmp --srvcert
ManagementCA.cacert.pem --ir --user vmware --password vmware --newclcert
user1.der --newkey user_key.pem --subject "CN=vmware,C=SC"

But i am getting the following error

ejbca@ejbca:~/cmpforopenssl-code-766/src/openssl-client$ ./cmpclient
--server localhost --port 8080 --path ejbca/public/cmp --srvcert
ManagementCA.cacert.pem --ir --user vmware --password vmware --newclcert
user1.der --newkey user_key.pem --subject "CN=vmware,C=SC"
INFO: Reading DER Certificate from File ManagementCA.cacert.pem
SUCCESS: BIO_new
INFO: Unable to read certificate in DER format, trying PEM...
INFO: Reading PEM Certificate from File ManagementCA.cacert.pem
SUCCESS: BIO_new
INFO: Using existing key file "user_key.pem"
INFO: Reading Public Key from File user_key.pem
INFO: the passphrase is ""...
SUCCESS: Reading PKEY
INFO: Sending Initialization Request
ERROR: received no initial Client Certificate. FILE cmpclient.c, LINE 394
139753323554464:error:3209D07F:CMP routines:CMP_PKIMESSAGE_http_perform:invalid
content type:cmp_http.c:906:
139753323554464:error:32096083:CMP routines:CMP_doInitialRequestSeq:ip not
received:cmp_ses.c:373:

Also i have configured the following configuration
The above requires a CMP alias in EJBCA with the following
configuration:(cmp alias with the name vmware)

   - Client mode
   - HMAC
   <http://en.wikipedia.org/wiki/Hash-based_message_authentication_code>
authentication
   module
   - CN as extract username component

Can you please suggest what might be wrong in the above configuration.

Thanks in Advance
Barinder