Yo,
[EMAIL PROTECTED] wrote:
Hi Adam,
Thanks for your answer on the OpenSSL mailing list. Firstly, I'm sorry
for contacting you with your personal email address. Currently I can't
join the OpenSSL mailing list (my company has problems with its
reverse DNS zone).
> openssl req -engine Luna
[EMAIL PROTECTED] wrote:
Hi,
I'm trying to sign a CSR with a private key stored on a Luna CA3
token. I use for this 2 versions of OpenSSL :
- The first one is provided by SafeNet : openssl-lunaca3-0.9.6-5.i386.rpm
- The second one is constructed from OpenSSL 0.9.7b with the patch
openssl-l
On Fri, Jan 20, 2006, David C. Partridge wrote:
> If you need to performs RSA private keyops, then ask the device to
> sign/decrypt for you.
>
That's what the commands he's been trying should do and which have been
failing...
Steve.
--
Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homep
Why would you want the private key to leave the token in clear anyway?
If you need to performs RSA private keyops, then ask the device to
sign/decrypt for you.
The CA3 FWIW will not even let you wrap a private key off under another key
as this HSM is intended for use as a CA's HSM.
If you need t
On Fri, Jan 20, 2006, [EMAIL PROTECTED] wrote:
>
> Each time I try to load a key from the token, an error occurs whatever
> the version of OpenSSL :
>
> /usr/local/ssl/bin/openssl req -engine LunaCA3 -keyform engine -text
> -key "RSA 1024-bit Private Key:1" -out cr.pem
> Using configuration fr
Hi,
I'm trying to sign a CSR with a private key stored on a Luna CA3 token.
I use for this 2 versions of OpenSSL :
- The first one is provided by SafeNet : openssl-lunaca3-0.9.6-5.i386.rpm
- The second one is constructed from OpenSSL 0.9.7b with the patch
openssl-lunaca3-patch-0.9.7.tar
Th
