Menu
▾
▴
Re: [Ejbca-develop] No certificate created for end entity
|
From: Tomas G. <to...@pr...> - 2018-06-14 11:07:58
|
You are probably trying to do "browser enrollment" using the Chrome browser. Chrome does not support browser enrollment since a couple of years now. The only browser that still support browser enrollment kind of stable, is FireFox. Regards, Tomas On 2018-06-14 12:32, John R wrote: > Hello, > Not sure if this is the place to ask - if not I apologize. > > So the problem: > I use to be able to create an end entity from the administration web > page. When I created an end entity and then found it via the search it > would have a certificate. > Now it says "Certificate specified doesn’t exist in database, it may not > have been generated." > > The token field is selected to be: User Generated > > If I go to the public web and try to enroll it throws an erorr: > > > Username: testEntity > Parameter names and values: > > showResultPage: 'true' > > hidemenu: 'false' > > certprofile: 'TEST_SERVER' > > user: 'testEntity' > > password: <hidden> > > Exception: > java.lang.Exception: No known request type received. > at org.ejbca.ui.web.pub.RequestInstance.doPost(RequestInstance.java:495) > at org.ejbca.ui.web.pub.CertReqServlet.doPost(CertReqServlet.java:116) > at javax.servlet.http.HttpServlet.service(HttpServlet.java:754) > at javax.servlet.http.HttpServlet.service(HttpServlet.java:847) > at > org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:329) > at > org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248) > at > org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198) > at > org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:280) > at > org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248) > at org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36) > at > org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:280) > at > org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248) > at > org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:275) > at > org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:161) > at > org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:397) > at > org.jboss.as.jpa.interceptor.WebNonTxEmCloserValve.invoke(WebNonTxEmCloserValve.java:50) > at > org.jboss.as.web.security.SecurityContextAssociationValve.invoke(SecurityContextAssociationValve.java:153) > at > org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:155) > at > org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102) > at > org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109) > at > org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:368) > at > org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:877) > at > org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:671) > at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:930) > at java.lang.Thread.run(Thread.java:748) > > > I use to generate many certificates this way. Today I created a new > ca/ca profile and end entity profile as I needed a better hashing > algorithm. I used clone/use as template for the most part and I'm almost > sure I haven't changed any of the existing profiles. But that's ALMOST. > The new end entity I created for my new profiles had a certificate but a > wrong Issuer DN. So I tweaked it a bit - then suddenly no certificates. > Then I tried to create one using the old profiles but still couldn't. > > Is it possible I changed some configuration which is now casuing this? > Any help would be much appreciated. > > Best regards > > > ------------------------------------------------------------------------------ > Check out the vibrant tech community on one of the world's most > engaging tech sites, Slashdot.org! http://sdm.link/slashdot > > > > _______________________________________________ > Ejbca-develop mailing list > Ejb...@li... > https://lists.sourceforge.net/lists/listinfo/ejbca-develop > |
