Bonjour, Hodie post. Non. Iul. MMV est, Robinson, Richard L (Rick) scripsit: > I get errors indicating the engine (pkcs11) is not known. This sort of > makes sense if the engine was discarded ones the previous command was > exited. I have tried various engine IDs but have had not luck.
Use the autoconfig feature of OpenSSL. Update your openssl.cnf file, by adding this: ----- openssl_conf = openssl_init [openssl_init] oid_section = new_oids engine = engine_section [ engine_section ] dynamic = dynamic_section [ dynamic_section ] engine_id = dynamic SO_PATH = /usr/lib/opensc/engine_pkcs11.so ID = pkcs11 LIST_ADD = 1 NO_VCHECK = 1 LOAD = EMPTY ----- adjust the commands to your specific case, then set the environment variable OPENSSL_CONF to point to this openssl.cnf file, and you'll be able to use 'openssl req' as usual. I don't know how the change of ENGINE id will perform with the rest, but you should now go a little farther. -- Erwann ABALEA <[EMAIL PROTECTED]> ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
