[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: CRL with OpenSSL

To: eabalea@gmail.com (Erwann Abalea)
Subject: Re: CRL with OpenSSL
From: manu@netbsd.org (Emmanuel Dreyfus)
Date: Mon, 14 Apr 2014 20:23:13 +0200
Cc: Christian Kratzer <ck@cksoft.de>, "openldap-technical@openldap.org" <openldap-technical@openldap.org>
In-reply-to: <CA+i=0E6T6Spmv-5wza0aMZ59h0fm3ZaQwqF=F8gZNdAyMsZQAA@mail.gmail.com>
User-agent: MacSOUP/2.7 (unregistered for 2642 days)

Erwann Abalea <eabalea@gmail.com> wrote:

> It considers that the CRL found at "hash".r0 isn't valid or sufficient to
> give a revocation status of your certificate.
> Could you post the subscriber certificate, its issuing CA cert, and the
> corresponding CRL somewhere?

I found the problem: it was not signed by the right CA (same private
key, different cert)

-- 
Emmanuel Dreyfus
http://hcpnet.free.fr/pubz
manu@netbsd.org

Follow-Ups:
- Re: CRL with OpenSSL
  - From: Erwann Abalea <eabalea@gmail.com>

References:
- Re: CRL with OpenSSL
  - From: Erwann Abalea <eabalea@gmail.com>

Prev by Date: Re: N-Way Multimaster replication
Next by Date: RE: Problem after migration openldap 2.3.43 to 2.4.23 --> 32 No Such Object
Index(es):
- Chronological
- Thread