[f-nsp] Problem doing gencsr

Rantanen, Edward CTR Edward.A.Rantanen at uscg.mil
Fri Jul 25 09:02:58 EDT 2008 

After trouble shooting (playing around) figured how the cards interact with the software along their unique sets of commands. 

The commands act/re-act differently when ran from management card vs. the SSL card. 

The management card does not echo, ssl out-put the same as the ssl card itself. When I did an rconsole into the ssl card I was able to see the error on the commands, or when doing a clear on the key/certs the echo'd from the flash would show. 



Tks Oliver for assist. 

-----Original Message-----
From: oadam at madao.de [mailto:oadam at madao.de] 
Sent: Friday, July 25, 2008 2:38 AM
To: Rantanen, Edward CTR; foundry-nsp at puck.nether.net
Subject: Re: [f-nsp] Problem doing gencsr

I had a look at it and you are not supposed to use a password with the gencsr command. That is how you should do it:

SLB-ServerIron 4G#
SLB-ServerIron 4G#ssl genrsa RUN 1024 pass 
SLB-ServerIron 4G#ssl gencsr RUN
You are about to be asked to enter information that will be incorporated into your certificate request. What you are about to enter is what is called a Distinguished Name or a DN.
Country name (2 letter code) [US]
State or province (full name) [California] 
Locality name (city)  [San Jose] 
Organization name (Company name) [Foundry Networks] 
Organizational unit name (department) [Web administration] 
Common name (your domain name) [ www.foundrynet.com <http://www.foundrynet.com/> ] 
Email address [webadmin at foundrynet.com] 

Please try this.

Cheers,

Oliver

At 19:09 24.07.2008, Oliver Adam wrote:


	This looks like a bug to be honest - have you tried software release 10.2.00? I am going to check 10.2.01 tomorrow and I will let you know about the results.
	
	R, Oliver
	
	At 20:46 23.07.2008, Rantanen, Edward CTR wrote:
	

		I am having a problem generating a csr, running 10201b on an SI 450 with an ssl module.
		
		
		#ssl genrsa testkey 1024 foundry123 -> works fine
		
		But when trying to do a:
		
		#ssl gencsr testkey foundry123 -> the command does not show an error, but it shows another # for the next line with nothing further.
		
		This is being done with a serial cable into a laptop with hyperterm.
		
		
		 Any help would be appreciated.
		
		Ed
		
		_______________________________________________
		foundry-nsp mailing list
		foundry-nsp at puck.nether.net
		http://puck.nether.net/mailman/listinfo/foundry-nsp <http://puck.nether.net/mailman/listinfo/foundry-nsp> 



	_______________________________________________
	foundry-nsp mailing list
	foundry-nsp at puck.nether.net
	http://puck.nether.net/mailman/listinfo/foundry-nsp <http://puck.nether.net/mailman/listinfo/foundry-nsp>

More information about the foundry-nsp mailing list