[vwnc] X509.Certificate issue
Locked
[vwnc] X509.Certificate issue
 
|
A server we use XmlRpc with had a new certificate installed today. I believe it was from VeriSign. I'm trying to update our X509Registry and have run into a problem. When I try to add the new certificate (after removing the old one) I get "Basic Constraints are required for a CA certificate". Comparing old and new certificates I see the following differences in the section that seems to be the problem: Old: 0a:78:35:02:e2:a6:69:ea:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE Signature Algorithm: sha-1WithRSAEncryption 69:45:54:43:b6:5d:c0:b0:1b:3a:88:7c:e9:33:67:1b:1b:32: New: 5d:a9:04:b5:98:b8:06:22:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Key Usage: critical Digital Signature, Non Repudiation, Key Encipherment, Encryption SubjectKeyIdentifier: 2.5.29.31: 2.5.29.35: 2.5.29.37: Signature Algorithm: sha-1WithRSAEncryption 43:b5:d5:a2:80:5f:7f:ad:51:20:ca:69:29:bb:1b:65:d2:1e: Indeed, I don't see a Basic Constraints stanza in the new certificate. Is Basic Constraints: now Key Usage:? Any ideas why this would be? Is there a work-around or fix? Thanks, Mark K. Petersen (Embedded image moved to Home Office: (319) Semiconductor Research file: pic20898.jpg) 406-4165 Cell: (845) and Development Center 235-4360 IBM Global Engineering Internet email: Solutions [hidden email] DMACS Wiki DMACS Forum _______________________________________________ vwnc mailing list [hidden email] http://lists.cs.uiuc.edu/mailman/listinfo/vwnc |
pic20898.jpg (9K) | Free forum by Nabble | Edit this page |