How to add a custom extension to a profile
by joris dedieu
Hi list,
I'm currently trying to add some extensions (For puppet trusted
factshttps://docs.puppet.com/puppet/latest/ssl_attributes_extensions.html)
to my certificates. As far as I understand, I have to create / modify
a profile to do so. From the CSR, I can see the request extension
Requested Extensions:
1.3.6.1.4.1.34380.1.1.13:
..my_puppet_role
X509v3 Subject Alternative Name:
So basically the question is how to declare 1.3.6.1.4.1.34380.1.1.13
retrieve it's value in $request$ ? Is there something similar,
somewhere that I can use as an example ? a doc to read ?
Many thanks
Joris
8 years
Publishing CRL on Certs
by Rafael Leiva-Ochoa
Hi Everyone,
What configuration file on my Dogtag CA Server do I modify to publish
the CRL. And what change do I put on it. I only see the OSCP link on
certificates I generate or approve. Any help would be great.
Thanks,
Rafael
8 years
CS Server error
by Rafael Leiva-Ochoa
Hi Team,
I have installed Dogtag on one of my Raspberry PI 3 devices for
testing. At first it was working great. Then, I noticed that it took a very
long time for the DogTag Start Page to startup when I rebooted my Pi. In
some cases, it took 10min's, but I attributed this to the fact that it was
running on a ARM processor, and it takes a while to start up. Now, for some
reason, I am getting this error:
HTTP Status 500 - CS server is not ready to serve.
*type* Exception report
*message* *CS server is not ready to serve.*
*description* *The server encountered an internal error that prevented it
from fulfilling this request.*
*exception*
java.io.IOException: CS server is not ready to serve.
com.netscape.cms.servlet.base.CMSServlet.service(CMSServlet.java:445)
javax.servlet.http.HttpServlet.service(HttpServlet.java:729)
sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
java.lang.reflect.Method.invoke(Method.java:498)
org.apache.catalina.security.SecurityUtil$1.run(SecurityUtil.java:293)
org.apache.catalina.security.SecurityUtil$1.run(SecurityUtil.java:290)
java.security.AccessController.doPrivileged(Native Method)
javax.security.auth.Subject.doAsPrivileged(Subject.java:549)
org.apache.catalina.security.SecurityUtil.execute(SecurityUtil.java:325)
org.apache.catalina.security.SecurityUtil.doAsPrivilege(SecurityUtil.java:176)
java.security.AccessController.doPrivileged(Native Method)
org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilter.java:52)
sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
java.lang.reflect.Method.invoke(Method.java:498)
org.apache.catalina.security.SecurityUtil$1.run(SecurityUtil.java:293)
org.apache.catalina.security.SecurityUtil$1.run(SecurityUtil.java:290)
java.security.AccessController.doPrivileged(Native Method)
javax.security.auth.Subject.doAsPrivileged(Subject.java:549)
org.apache.catalina.security.SecurityUtil.execute(SecurityUtil.java:325)
org.apache.catalina.security.SecurityUtil.doAsPrivilege(SecurityUtil.java:264)
*note* *The full stack trace of the root cause is available in the Apache
Tomcat/8.0.38 logs.*
------------------------------
Apache Tomcat/8.0.38
I have tried rebooting the PI many times, and looking at the logs, but no
luck. Any ideas?
Thanks,
Rafael
8 years
