Menu
▾
▴
Re: [SignServer-develop] Timestamp configuration
|
From: Jaime H. E. <hab...@gm...> - 2017-03-16 02:07:05
|
On Wed, Mar 15, 2017 at 4:24 PM, Arnaud Defos <arn...@gm...> wrote: > Hi everyone, > > I would like to use TimeStamp server but I have troubles with the > configuration. > > I have for the moment two workers : > - one for JKS configuration (it is active and online) > - one for StampSigner which is active and offline > => Worker status : Offline > Token status : Active > Signings : 0 > > Errors: > - Missing extended key usage timeStamping > - The extended key usage extension must be present and marked as > critical > There are some requirements on the digital certificate to be used for timestamping, see https://www.ietf.org/rfc/rfc3161.txt, "2.3. Identification of the TSA". You could easily generate a certificate for that purpose and with the required extension by using XCA or you could just use the demonstration certificate for starting as indicated in the link below. > > I use signserver 3.7.0. > > I don't understand how could I configure signing certificate and > certificate chain. Which properties do I have to set ? In which worker ? Is > the default key configuration important ? > First try to get the timestamping service working by following instructions here https://www.signserver.org/doc/current/manual/installguide.html#Quick_start_demo_Timestamp_signer . > > > Do you have any ideas ? > > Thanks a lot, > > Best regards, > > Arnaud > > ------------------------------------------------------------ > ------------------ > Check out the vibrant tech community on one of the world's most > engaging tech sites, Slashdot.org! http://sdm.link/slashdot > _______________________________________________ > SignServer-develop mailing list > Sig...@li... > https://lists.sourceforge.net/lists/listinfo/signserver-develop > > -- Jaime Hablutzel - RPC 994690880 |
