Collections:
Other Resources:
OpenSSL "ca" Error "stateOrProvinceName field needed to be the same"
Why I am getting the "The stateOrProvinceName field needed to be the same in the CA certificate (...) and the request (...)" error when running OpenSSL "ca" command?
✍: FYIcenter.com
If you are running the OpenSSL "ca" command installed
with the slproweb binary package for Windows,
you may get the "The stateOrProvinceName field needed to be the same in the
CA certificate (...) and the request (...)" error as shown below:
C:\Users\fyicenter>\local\OpenSSL-Win32\bin\openssl.exe OpenSSL> ca -in test.csr -keyfile my_ca.key -cert my_ca.crt Using configuration from C:\local\OpenSSL-Win32\bin\openssl.cfg Enter pass phrase for my_ca.key: Check that the request matches the signature Signature ok The stateOrProvinceName field needed to be the same in the CA certificate (TX) and the request (NY) error in ca
This error is caused by the "stateOrProvinceName=match" option in the [policy_match] section in the configuration file. This option limits you to sign a CSR that has the same stateOrProvinceName as you CA certificate.
Fixing this error is easy. Just add "-policy policy_anything" option in the "ca" command to by-pass this requirement.
⇒ OpenSSL "ca" - Sign CSR with CA Certificate
2016-09-13, ∼8260🔥, 0💬
Popular Posts:
Certificate summary - Owner: t.co, Twitter Security, "Twitter, Inc.", L=San Francisco, ST=California...
Certificate summary - Owner: www.gmx.net, GMX, 1&1 Mail & Media GmbH, L=Montabaur, ST=Rhinel...
How to get a list of all command options supported by "certmgr.exe"? You can see a list of all comma...
Certificate Summary: Subject: *.facebook.com Issuer: DigiCert SHA2 High Assurance Server CA Expirati...
Certificate summary - Owner: a248.e.akamai.net, Akamai Technologies Inc., L=Cambridge, ST=MA, US Iss...