I removed all x509 occurrences in openssl.cnf
removed all x509 extensions like CA:true etc from cnf file.
Generated a 512 bit CA key & Cert with only O,OU,C .
Was able to import it into Oracle
Also signed a CSR
Able to import user certificate into oracle.
Thanx a lot guys,
especially Geof
Hi there,
I have no idea what it is that is bothering Oracle 8i about your cert(s) so
I can simply make guesses here ...
On Tuesday 20 November 2001 02:32, viswanath wrote:
> Here are the differences found
>
>MY CERT|VERISIGN
>
> 1) 1024-bit
Here are the differences found
MY CERT | VERISIGN
1) 1024-bit 1) 512-bit
2) serial no. 0 2) serial no. 52:a9:f4:24:da:67:4c:9d:af:4f:53:78:52:ab:ef:6e
3) has C,L,ST,O,OU,CN 3) has O,OU,OU
On Tuesday 20 November 2001 00:20, viswanath wrote:
> But the self signed certificate that has been generated contains the
> following
>
> X509v3 Basic Constraints:
> CA:TRUE
> X509v3 Key Usage:
> Certificate Sign, CRL Sign
> Netscape Cert Type:
> S
But the self signed certificate that has been generated contains the
following
X509v3 Basic Constraints:
CA:TRUE
X509v3 Key Usage:
Certificate Sign, CRL Sign
Netscape Cert Type:
SSL CA, S/MIME CA, Object Signing CA
which means that it is a CA cer
My guess, is a self signed certificate is not a CA certificate. In your
openssl.cnf file you should se an option like CA=true, which is used only to
sign CA certificate.
Cheers.
Franck Martin
Network and Database Development Officer
SOPAC South Pacific Applied Geoscience Commission
Fiji
E-mail:
