Collections:
Other Resources:
OpenSSL "ca" Error "stateOrProvinceName field needed to be the same"
Why I am getting the "The stateOrProvinceName field needed to be the same in the CA certificate (...) and the request (...)" error when running OpenSSL "ca" command?
✍: FYIcenter.com
If you are running the OpenSSL "ca" command installed
with the slproweb binary package for Windows,
you may get the "The stateOrProvinceName field needed to be the same in the
CA certificate (...) and the request (...)" error as shown below:
C:\Users\fyicenter>\local\OpenSSL-Win32\bin\openssl.exe OpenSSL> ca -in test.csr -keyfile my_ca.key -cert my_ca.crt Using configuration from C:\local\OpenSSL-Win32\bin\openssl.cfg Enter pass phrase for my_ca.key: Check that the request matches the signature Signature ok The stateOrProvinceName field needed to be the same in the CA certificate (TX) and the request (NY) error in ca
This error is caused by the "stateOrProvinceName=match" option in the [policy_match] section in the configuration file. This option limits you to sign a CSR that has the same stateOrProvinceName as you CA certificate.
Fixing this error is easy. Just add "-policy policy_anything" option in the "ca" command to by-pass this requirement.
⇒ OpenSSL "ca" - Sign CSR with CA Certificate
2016-09-13, ∼8256🔥, 0💬
Popular Posts:
Certificate summary - Owner: *.businessinsider.com, Domain Control Validated, *.businessinsider.com ...
How to get a list of extended options supported by the "makecert.exe" command? I want to know more o...
Certificate summary - Owner: *.secure.pixiv.net, pixiv Inc., Development Department, L=Shibuya-ku, S...
Certificate Summary: Subject: Microsoft RSA TLS CA 01 Issuer: Baltimore CyberTrust Root Expiration: ...
How to view the server certificate using the OpenSSL "s_client -connect" command? You can get the se...