1. If you can export CA from windows, only MS can tell you. If you can
export it in a usable format, for example PKCS#12 for the CA keys and
PEM/DER for user certificate. Depending on the CA product in Linux you
should be able to import it easily, OpenSSL CA, EJBCA, ...
2. You don't write were your OID appears. Is it an extension? Many CA
products (again OpenSSL, EJBCA, ...) will allow you to generate
certificagtes with any type of extensions etc. .pfx is simply another
name for pkcs12, any CA in linux can create and export pkcs12 files.
Cheers,
Tomas
DucaConte Balabam wrote:
Dmitrij Mironov ha scritto:
Hi, Stefano,
In theory answer is YES, but in practice is much more easier to create
new CA on linux, configure to support such OIDs and start to issue
certificates. Old CA will be needed to issue CRL until all issued
certificate will be expired.
BR,
Dmitrij
Hi,
so, there're two problems:
1. Export CA from windows and import under linux
2. How Linux can generate certs using specified oids and export a in a
format readable from windows (typically .pfx).
For step 1, google didn't help me.
For step 2, i'll look again on google.
Stefano
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
