Help required for CSR validation
Wilankar, Trupti
trupti.wilankar at hp.com
Tue Nov 24 11:10:47 CET 2009
Hi Daniel,
We had tried removing "NEW" from the header and footer in the Certtool CSR and then submitting the CSR. It still gives the same error.
We even tried adding "NEW" in the header and footer lines in OpenSSL CSR and that works. So, apparently VeriSign does not have a problem with the "NEW"
Regards,
Trupti
-----Original Message-----
From: Daniel Kahn Gillmor [mailto:dkg at fifthhorseman.net]
Sent: Tuesday, November 24, 2009 12:29 AM
To: Wilankar, Trupti
Cc: Nikos Mavrogiannopoulos; Konjarla, Pavan; Simon Josefsson; gnutls-devel at gnu.org; Amburle, Rohan
Subject: Re: Help required for CSR validation
On 11/23/2009 02:23 AM, Wilankar, Trupti wrote:
>
> CSR from OpenSSL: (Command: openssl req -new -nodes -key priv.key -out
> openssl.req)
>
> -----BEGIN CERTIFICATE REQUEST-----
[...]
> -----END CERTIFICATE REQUEST-----
>
> CSR from Certtool: (Command: certtool --generate-request
> --load-privkey priv.key --outfile gnutls.req)
>
> -----BEGIN NEW CERTIFICATE REQUEST-----
[...]
> -----END NEW CERTIFICATE REQUEST-----
this is perhaps a long shot, but could it be the "NEW" that VeriSign doesn't like? can you try changing the header and footer lines and re-submitting?
--dkg
More information about the Gnutls-devel
mailing list