Hi, i have setup a small CA and i use the Aladin etoken Pro USB CA to host the root private key.
the revocation operation (openssl ca -revoke cert.pem ...) request the User PIN. Does someone know why the PIN is required for this operation? Does anybody know if it is possible to revoke certificate per batch to avoid entering PIN for each certificate? something similar to certificate signature per batch (openssl ca -engine pkcs11 -keyfile id_45 -keyform engine -batch -infiles cert*.pem) Thanks for your help Philippe. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
