pyCA help
florian.buron at enst-bretagne.fr
florian.buron at enst-bretagne.fr
Fri Feb 9 19:27:33 CET 2001
Hi!
Just wanted to give a little feedback on PyCA. i think it's a very good
piece of software.
I only add a slight problem genrating working Email certificate for MSIE and
Netscape, because it wouldn't export the certificate in the mail i sent.
I found why :
[ x509v3_ext_EmailCerts ]
keyUsage = nonRepudiation, digitalSignature , keyEncipherment #don't
forget keyEncipherment
Hope it'll help.
Ah! and i wanted to know why Certificates requests have two parts...
What is the use for .ldif? for Ldap repository i guess?
See you
Florian
----- Original Message -----
From: "Michael Ströder" <michael at stroeder.com>
To: <florian.buron at enst-bretagne.fr>
Sent: Saturday, January 20, 2001 11:08 PM
Subject: Re: pyCA help
> florian.buron at enst-bretagne.fr wrote:
> >
> > The files were well copied.
> >
> > but what does the -name refers to in "openssl ca -name [name of CA
> > section] -in [pathname of CSR.pem]"
> > it's the CA section in the openssl.cnf ?
> > like CA_EmailCerts ????
>
> Exactly. Yes.
>
> > i'll try that :
> >
> > openssl ca -config /usr/local/pyca/conf/openssl.cnf -name
> > A_EmailCerts -in
> > cert-req-PKCS10.EmailCerts.xWMnhL9RigdpMPU7S_zeIg\=\=.pem
>
> So in the mean time you should have created already your first cert.
> BTW: What do you plan to do with pyCA?
> There's not much user feedback. :-(
>
> > hope my linux box won't explode :)
>
> Depends on the RSA key you created and your CPUID. No just
> kidding... ;-)
>
> Ciao, Michael.
More information about the python-crypto
mailing list