[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: SSL subjectAltName woes

To: openldap-software@OpenLDAP.org
Subject: Re: SSL subjectAltName woes
From: Quanah Gibson-Mount <quanah@stanford.edu>
Date: Wed, 11 Aug 2004 15:05:04 -0700
Content-disposition: inline
In-reply-to: <7B14CCAF-EBDD-11D8-A35B-000A959133A8@u.washington.edu>
References: <7B14CCAF-EBDD-11D8-A35B-000A959133A8@u.washington.edu>

--On Wednesday, August 11, 2004 2:29 PM -0700 Donn Cave <donn@u.washington.edu> wrote:

On Wednesday, August 11, 2004, at 01:20 PM, Jeff Saxton wrote:
...

Examining at the server certificate with:
 openssl x509 -noout -text -in corpserv-03-certificate.pem
It appears that the subjectAltName is not being put in the certificate:


I agree, but don't have any ideas.  The configuration looked
OK to me, as far as it went, but it could be that for some
trivial reason it isn't actually the configuration used to
generate the request.  Anyway, it's a mystery to me.  Maybe
there's some openssl list where experts in this matter can
be found.


Yes, there is an openssl list.  I suggest mailing it. ;)

I got subjectAltNames to work at one point, it took a lot of experimentation on my part.

--Quanah

--
Quanah Gibson-Mount
Principal Software Developer
ITSS/Shared Services
Stanford University
GnuPG Public Key: http://www.stanford.edu/~quanah/pgp.html

Follow-Ups:
- RE: SSL subjectAltName woes
  - From: "Jeff Saxton" <jsaxton@addamark.com>

References:
- Re: SSL subjectAltName woes
  - From: Donn Cave <donn@u.washington.edu>

Prev by Date: Re: SSL subjectAltName woes
Next by Date: Re: Trouble with ACL
Index(es):
- Chronological
- Thread