Menu
▾
▴
Re: [Trustedjava-support] tccert fails
|
From: Carolin L. <car...@un...> - 2008-01-16 16:05:25
|
Ok, I did not mean these certificates, I am at this point: == The PrivacyCA expects a certain set of certificates to be available upon startup: A self signed CA root certificate ca.cert At the next level, intermediate CA certificates + private keys for each service: TPM Endorsement Key (EK) CA caek.cert and caek.pkey Attestation Identity Key (AIK) CA caaik.cert and caaik.pkey The certificates and private keys for these 3 entities may be build with the TCcert utility. After running TCcert, just copy over the created ca* files. == But I think, I understand, what you mean... ca.ini generates those three and cert.ini the other two... was not clear for me, as you see :-) (I thought ca.ini was just an example to explain tccert...) Regards Martin Pirker wrote: > Carolin Latze wrote: > >> example with ca.ini works, but I am not able to use certs.ini: >> >> ./tccert.sh -i ca certs.ini >> > > PCA readme, section 2.4.2: > "To create this 2 entities run the build-certs script in the bin directory" > > HTH, > Martin > |
