search for: newca

Hi, sorry for the stupid question, but however i am following all howtos and tutorials it is not working 1) i have created CA certificate - /etc/pki/tls/misc/CA -newca 2) i have generated a new request - /etc/pki/tls/misc/CA -newreq 3) i have signed certificate /etc/pki/tls/misc/CA -signreq SO i have CA in /etc/pki/CA i have newkey.pem i have newcert.pem i have also cealrkey.pem (without passphrase) *$ openssl rsa < newkey.pem > clearkey.pem* What to do...

...s correctly when run using ''puppet --debug --verbose test.pp'': debug: /Stage[main]//Exec[/root/test.exp]: Executing ''/root/test.exp'' debug: Executing ''/root/test.exp'' notice: /Stage[main]//Exec[/root/test.exp]/returns: spawn /etc/ssl/misc/CA.pl -newca ... notice: /Stage[main]//Exec[/root/test.exp]/returns: executed successfully However, it fails when run using puppetd: ... puppet-agent[3650]: (/Stage[main]/Mail/Exec[/root/test.exp]/returns) spawn /etc/ssl/misc/CA.pl -newca#015 ... puppet-agent[3650]: (/Stage[main]/Mail/Exec[/root/test.exp]/retu...

...hat I wrote above. Most documentation, when not outdated, seems targeted at much more complex scenarions. Is this sequence of actions and commands correct and complete for my case, or not: 1) cd /usr/share/ssl 2) modify openssl.cnf to have your Common Name and other parameters 3) run: ./CA -newca ./CA -newreq-nodes 4) move the private key from the .pem file to a separate file 5) put the cert and key file in a location where Postfix, 6) Dovecot and Apache can all use them 7) configure each of those servers to use the certificate What have I missed? Thank you in advance for any feedba...

...is3# make install clean mis3# cd /usr/ports/net/samba mis3# make install clean (a) Create a self-signed certificate (Openssl) in order to use the "start_tls" option mis3# cd /usr/local/openssl mis3# mkdir openldapCA; cd openldapCA mis3# ../misc/CA.sh -newca Answer the questions prompted. The important things to keep in mind: (1) PEM pass phrase couldn't be too long (that's according to experience, probably 15/16 chars. Maybe I was wrong about this point. However, when I first set a very long password, it couldn't work.)...

...tc --localstatedir=/var --enable-shared make install /etc/nsswitch.conf: passwd: files ldap shadow: files ldap group: files ldap /etc/pam_ldap.conf: uri ldap://smb.ahm.nl/ base dc=ahm,dc=nl pam_password exop ------------------------ TLS certs: % cd /etc/ssl % ./misc/CA.sh -newca CA certificate filename (or enter to create) <enter> etc... ----- Country Name (2 letter code) [AU]:NL State or Province Name (full name) [Some-State]:Noordholland Locality Name (eg, city) []:Amsterdam Organization Name (eg, company) [Internet Widgits Pty Ltd]:AHM Organizational Unit N...