Initial Authentication through EndEntityCertificate #902
pragya1998hal
started this conversation in
General
Replies: 1 comment
-
Hello sir please guide me on my above queries |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
-
I am using CMP configuration
While creating alias I am using EndEntityCertificate as CMP Authentication Module.
Firstly I Created EndEntityCertificate in EJBCA and downloaded the certificate (along with its private key) for use in your CMP client program. In program I attached that downloaded certificat to the PKIMessage in the extraCert field and send certificate creation request on EJBCA. This works fine for me and I successfully get newly generated certificates.
But Now I created one CA certificate through openssl command and import my CA certificate to EJBCA. Now when in my program I attached my created CA certificate to the PKIMessage in the extraCert field and send certificate creation request on EJBCA. I am getting error:
'The certificate chain attached to the PKIMessage in the extraCert field is not valid - No certificate found matching targetConstraints.'
I didn't get any way to upload my EndEntityCertificate in database of EJBCA.
My main concern is I want to create CA certificate or EndEntityCertificate from our end and want to pass my certificate to the PKIMessage in the extraCert field for initial authentication.
Can u tell me is it possible or not in EJBCA. And if possible, then how?
Beta Was this translation helpful? Give feedback.
All reactions