From: Ejbca-support <ejb...@pr...> - 2006-07-05 19:48:18
|
Status 40 is from UserDataConstants, i.e. STATUS_GENERATED. When generating a cew cert for a user you have to set the status to NEW first, or you can also configure your CA not to 'finish user'. It is a one-time password feature, so a user can normally (when finish user is checked by default) only get one certificate, then an administrator must reset the users status (and assign a new password) for the user to get a new certificate. Regarding other questions: An x.509 certificate can not be modified in a certificate. A new certifictae must be created (that's the while spirit of certificates, they can not be modified). So you have to call createCertificate for every new certificate. You can pass the old public key to createCertificate every time with no problem. It is nothing wrong with issuing a new certifictae to the same key-pair, as long as this is what you intend to do (which it is in your case). Cheers, Tomas Jordan Rivington skrev: > Why would the cert have a Revoked status? > > Thanks > ------------------------------------------------------------------------ > > Using Tomcat but need to do more? Need to support web services, security? > Get stuff done quickly with pre-integrated technology to make your job easier > Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo > http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 > > ------------------------------------------------------------------------ > > _______________________________________________ > Ejbca-develop mailing list > Ejb...@li... > https://lists.sourceforge.net/lists/listinfo/ejbca-develop > |