Menu
▾
▴
Re: [OpenCA-Devel] Token Requests: "Generate Key" button
|
From: Jorge R. F. <re...@fu...> - 2006-05-24 12:43:50
|
Martin, Thanks for your answer. I have successfully used SmartCard with OpenCA, that is not what I am looking for, exactly. You are right, the "Token Request" at the PUB interface is just for entering data and does not make any cryptographic operation. A certificate request of this kind (not a CSR yet, just the raw data) is kept until the RA operator access it. When the RA operator opens the request there is a form showing the data the user inserted at the PUB interface when the request was made. This form have at its bottom a "Generate Key" button which, as its names says, should be to generate the key pair for the data and until that time the raw data becomes a CSR. But, when the button is clicked, OpenCA opens a empty form, and the data the user entered at the PUB interface is never shown. I just need the user's data at that form. This way a user who, for example, does not have how to get/buy/etc a SmartCard, can request a certificate and then she can go the the RA office where the RA operator can give her the key pair into a SmarCard. Thanks again, Jorge Martin Bartosch wrote: > Hi, > >> I am new in this list and mainly a OpenCA user who needs some >> changes in OpenCA. >> After requesting a certificate using the "Token Request" link from >> the PUB interface, and then opening this request from the RA >> Interface, there is a "Generate Key" button at the bottom of the >> form. I was expecting, when hitting this button, to get the data >> inserted at the Pub interface when the request was made (at the PUB >> interface). And what I had was I completly empty form to make a >> completly new CSR which will substitute the one made before. >> If this is a bug, as it seems to be, it would be a pleasure for me >> to fix it, but I need help. > > > I haven't used this request type before, but if I am not mistaken the > "Token Request" is just a simple stub for inserting raw request data. > It does not generate keys at all, all it does is collect the required > textual input from the user and insert it in the database: Some > entity outside OpenCA must generate the corresponding SmartCard. > > If you want to use SmartCards with OpenCA, you might want to use the > Browser Request which should start a key generation on the attached > SmartCard if the client system and browser are configured properly > (PKCS#11 plugin). > > cu > > Martin > > > > ------------------------------------------------------- > All the advantages of Linux Managed Hosting--Without the Cost and Risk! > Fully trained technicians. The highest number of Red Hat > certifications in > the hosting industry. Fanatical Support. Click to learn more > http://sel.as-us.falkag.net/sel?cmd=lnk&kid=107521&bid=248729&dat=121642 > _______________________________________________ > OpenCA-Devel mailing list > Ope...@li... > https://lists.sourceforge.net/lists/listinfo/openca-devel > |