Menu
▾
▴
[Openca-Users] [Fwd: DN without email]
|
From: Nuno D. <nd...@li...> - 2004-04-29 16:26:49
|
Hi, I'm using openca-0.9.2-RC4, when i try to initialize the CA, if i put the email in the request i'm getting the DN with email in it, if i do not put the email in request, the "Subject Alternative Name" and "Issuer Alternative Name" are empty. So, i want the DN without email, and the "Alternative Name" with email. DN_WITHOUT_EMAIL "Y" are set in servers/ca.conf email_in_dn = no are set in openssl/openssl.cnf In this message from the list http://sourceforge.net/mailarchive/message.php?msg_id=7488508 Michael Bell suggest "Got to OPENCADIR/etc/openssl/openssl.cnf. Set the subject alternative name for the v3_ca to the required emailaddress. Don"t add the emailaddress to the subject of the new request." I do that, but do not work, i have this message when i try to do the "Generate new CA Certificate Request" Error Loading extension section v3_ca 3167:error:2207507C:X509 V3 routines:v2i_GENERAL_NAME:missing value:v3_alt.c:391: 3167:error:2206B080:X509 V3 routines:X509V3_EXT_conf:error in extension:v3_conf.c:92:name=subjectAltName, value=xx...@xx... In openssl.cnf i change this subjectAltName=xx...@xx... Someone can help me ? Thank's. ND -- Nuno Dias <nd...@li...> LIP |