This is a discussion on Re: Multi-value RDNs and openssl.cnf format - Openssl ; On Thu, Sep 21, 2006, James Lever wrote: > Hi Stephen, > > Thank you for your response. > > On 21/09/2006, at 10:08 AM, Dr. Stephen Henson wrote: > > >On Thu, Sep 21, 2006, James Lever wrote: > ...
On Thu, Sep 21, 2006, James Lever wrote:
> Hi Stephen,
>
> Thank you for your response.
>
> On 21/09/2006, at 10:08 AM, Dr. Stephen Henson wrote:
>
> >On Thu, Sep 21, 2006, James Lever wrote:
> >>I'm trying to work out how to create a multi-value RDN using an
> >>automated openssl.cnf file as per RFC2253. From the RFC, it has this
> >>example:
> >>
> >> OU=Sales+CN=J. Smith,O=Widget Inc.,C=US
> >
> >You precede the relevant line which prompts for or supplies the DN
> >component
> >with a '+'. So in the no prompt case if you have:
> >
> >CN="My Common Name"
> >it becomes:
> >+CN="My Common Name"
>
> I've tried that and got the following error:
>
> problems making Certificate Request 9407:error:0B083077:x509
> certificate routines:X509_NAME_ENTRY_create_by_txt:invalid field
> name:x509name.c:285:name=+OU
>
Hmmm, which version of OpenSSL is this? I started adding some plus notation
support in 0.9.8 IIRC and more complete in 0.9.9-dev.
Steve.
--
Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage
OpenSSL project core developer and freelance consultant.
Funding needed! Details on homepage.
Homepage: http://www.drh-consultancy.demon.co.uk
__________________________________________________ ____________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager majordomo@openssl.org
