oh, sorry, just looked at the config. Guessed he will use Windows PKI only with own root.
-----Ursprüngliche Nachricht----- Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Im Auftrag von Victor Duchovni Gesendet: Dienstag, 18. September 2007 21:27 An: openssl-users@openssl.org Betreff: Re: Configuration file for subjectAltName On Tue, Sep 18, 2007 at 09:17:23PM +0200, Buddy Butterfly wrote: > # subjectAltName = @alt_names > > should be uncommented :-) Did you read the comment above that line. > # Verisign managed PKI, does not yet support subjectAltName in CSRs, > # instead they prompt for these in the enrollment form... > # If your CA support SAN CSRs, uncomment below. > # subjectAltName = @alt_names > > [ alt_names ] > DNS.1 = www.example.com > DNS.2 = 0wn3d.example.com Some CAs fail to process CSRs that contain subjectAltName extensions. Getting these into a public CA cert is CA-dependent. -- Viktor. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED] ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
