This is not a question but a solution to a problem that I and many others it
seems have run into and no solution seems to be on the internet. So I found
a solution at least in my case and wanted it to be archived in this list so
that it can help others who run into this problem in the future.
The Problem:
After moving the CA files from one server to another you get an error
message similar to the following when trying to revoke a certificate.
ERROR:name does not match
/C=xx/ST=xx/O=xxx/CN=user1/[EMAIL PROTECTED]
The Solution:
The problem in my case was that the index.txt file was opened and
apparently saved on a windows computer before it found it's way to the new
server. Opening up the index.txt file in VIM showed that the file had ^M
control characters at the end of each line. As a result the Subject in the
certificate and the index.txt were failing to match resulting in the error
and preventing me from being able to revoke certificates. Simply removing
the ^M's from the index.txt file resolved the problem. As always use
caution when editing important files and make a backup of your index.txt
before attempting to do any edits.
I hope this helps someone.
--
David Miller
