Re: CA Issues
On Fri, 28 Oct 2011 09:40:07 +0000, Paddy Tollan wrote:
>> > Hi I am trying to generate a self signed CA certificate for a debian
>> > mail server I am able to start the process but when it comes to
>> > signing
>> > the certificate eg running the command openssl ca -out cert.pem
>> > -config ./openssl.cnf -infiles req.pem
>> >
>> > I get the error msg "error opening CA private key
>> > CA/private/cakey.pem no such file or directory error opening private
>> > key the directory and file is there at /root/CA/private/cakey.pem so
>> > not sure what to do to fix this any help valued i am using the file
>> > at this website as my base
>> >
>> >
>> > http://www.eclectica.ca/howto/ssl-cert-howto.php
>>
>> Are you using the suggested "openssl.cnf" file as template?
>>
>> What's the output of "ls -l /root/CA/*"?
> Hi
> first sorry for the HTML the output from the output of ls -l /root/CA/*
> is
>
> -rw-r--r-- 1 root root 1419 cacert.pem
> -rw-r--r-- 1 root root 0 index.txt
> -rw-r--r-- 1 root root 887 key.pem
> drwxr-xr-x 2 root root 4096 newcerts
> -rw-r--r-- 1 root root 2110 openssl.cnf
> drwxr-xr-x 2 root root 4096 private
> -rw-r--r-- 1 root root 875 req.pem
> -rw-r--r-- 1 root root 3 serial
>
> ls -l /root/CA/private* produces:
> -rw-r--r-- 1 root root 963 cakey.pem
>
> I am using http://www.eclectica.ca/howto/ssl-cert-howto.php as my
> template
All seems to be correct :-?
Ensure you are located at the proper directory level. I mean, as root:
cd /root/CA
And then run the command from there:
ca -out cert.pem -config ./openssl.cnf -infiles req.pem
Greetings,
--
Camaleón
Reply to: