Shaun McCullagh wrote:
>
> Hi,
>
> Please could somebody explain what the purpose of the 'Challenge
> Password' is for a PEM file. I note CA.sh prompts for this when a
> certificate request is made.
>
Its something that gets added to the certificate request. I believe its
original purpose was for some kind of confirmation of the sender for
things like picking up the certificate or revoking it.
Many CAs ignore the attribute. Unless a CA specifically requires it it
can be safely omitted.
Steve.
--
Dr Stephen N. Henson. http://www.drh-consultancy.demon.co.uk/
Personal Email: [EMAIL PROTECTED]
Senior crypto engineer, Celo Communications: http://www.celocom.com/
Core developer of the OpenSSL project: http://www.openssl.org/
Business Email: [EMAIL PROTECTED] PGP key: via homepage.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
