[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-users] Certs Location?

Subject: RE: [cobalt-users] Certs Location?
From: Mike At Spy <spycobalt@xxxxxxxxxxxxxxxxxx>
Date: Mon Oct 14 11:50:01 2002
List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>

This pinpoints the issue I am having; I don't have the private key that was
used to generate the cert - but I didn't send that.  I only sent the CSR,
which was used to issue the cert.

Does the CSR hold the private key, and that is how the cert was generated?
Will generating a new key require a new cert to be issued?

Thanks,

-Mike


> -----Original Message-----
> From: cobalt-users-admin@xxxxxxxxxxxxxxx
> [mailto:cobalt-users-admin@xxxxxxxxxxxxxxx]On Behalf Of Rick Ewart
> Sent: Monday, October 14, 2002 1:14 PM
> To: cobalt-users@xxxxxxxxxxxxxxx
> Subject: Re: [cobalt-users] Certs Location?
>
>
> Mike wrote:
> > Does anyone know where the CSR is located (via lunix, not the
> GUI) on the
> > Cobalt RAQ4r?  Ours seems to have disappeared, invalidating our
> cert, but
> I
> > have a copy of the CSR used to get the Cert.
>
> Not necessarily an expert here, but don't you need the private key to
> validate the cert? I thought it required that. The certificate request is
> really a "public" key, if you will, used only for the certificate
> generation. Maybe not - please correct if I am wrong. Most of
> this has been
> determined through inspection and observation....
>
> Anyhow, the certs are kept at /home/sites/www.yourdomain.com/certs
>
> A typical directory will have:
> certificate (from the issuer like Thawte)
> certificate.bak (I presume the previous one - the self-signed cert)
> equifaxca2 (your CA authority info)
> key (the private key that works with the certificate)
> request (the request you sent to get the certificate)
>
> If you have a certificate that has been issued, you need to pair that with
> the key that was in the dir at the time of issurance and is therefore
> related to the request.
>
> For those who are obtaining certs, I would recommend backing up this
> directory whenever you generate a cert, so you have a copy if
> something gets
> trashed.
>
> HTH.
> Rick
>
> _____________________________________
> cobalt-users mailing list
> cobalt-users@xxxxxxxxxxxxxxx
> To subscribe/unsubscribe, or to SEARCH THE ARCHIVES, go to:
> http://list.cobalt.com/mailman/listinfo/cobalt-users
>

References:
- Re: [cobalt-users] Certs Location?
  - From: Rick Ewart

Prev by Date: RE: [cobalt-users] Certs Location?
Next by Date: RE: [cobalt-users] scripts to mannage a RaQ4
Previous by thread: Re: [cobalt-users] Certs Location?
Next by thread: RE: [cobalt-users] Certs Location?

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index