Mathias Tausig schrieb:
Hy!Is it possible to create a certificate with openssl without using the coresponding private key (which is stored in a smartcard) but with the public key only?Mathias
It depends on which private key you are talking about... A certificate as such is a piece of information signed by a CA. To create a certificate you'll need the CA's private key.Usually the information contained in the certificate links a public key with some other information, like your eMail or a hostname.
So It should be possible to create a certificate if you have access to the CA's private key (which might well reside on a smartcard) and the user's public key. But IIRC the standard procedures involve a CSR signed by the user, so you might have to play around a bit...
BTW, private keys residing on a smartcard are supported by OpenSSL if you have an engine driver like, for example, opensc... Hope it helps. Ted ;)
smime.p7s
Description: S/MIME Cryptographic Signature
