Displaying 1 result from an estimated 1 matches for "ca_ssl_default".
2009 Nov 04
2
Certificates Revocation Lists and Apache...
...right now).
I have a "CA" that is signing a "CA SSL".
Then, the "CA SSL" is signing the clients certificates.
Now, I am testing Certificate Revocation Lists, but apache keeps saying: "Invalid signature on CRL"
I used:
$ openssl ca -config openssl.conf -name CA_ssl_default -revoke cassl/$CLIENTNAME.pem
Using configuration from openssl.conf
Enter pass phrase for cassl/private/cassl.key:
Revoking Certificate 02.
Data Base Updated
$ openssl ca -config openssl.conf -name CA_ssl_default -gencrl -out cassl/crl.pem -crldays 365
Using configuration from openssl.c...