On Tue, Sep 18, 2007 at 09:17:23PM +0200, Buddy Butterfly wrote:
> # subjectAltName = @alt_names
>
> should be uncommented :-)
Did you read the comment above that line.
> # Verisign managed PKI, does not yet support subjectAltName in CSRs,
> # instead they prompt for these in the enrollment form...
> # If your CA support SAN CSRs, uncomment below.
> # subjectAltName = @alt_names
>
> [ alt_names ]
> DNS.1 = www.example.com
> DNS.2 = 0wn3d.example.com
Some CAs fail to process CSRs that contain subjectAltName extensions. Getting
these into a public CA cert is CA-dependent.
--
Viktor.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
