Categories:
Android (13)
Apple Mac (29)
DH Keys (39)
DSA Keys (69)
EC Keys (551)
Firefox (31)
General (12)
Google Chrome (25)
Intermediate CA (152)
Java VM (33)
JDK Keytool (28)
Microsoft CertUtil (29)
Microsoft Edge (9)
Mozilla CertUtil (22)
OpenSSL (237)
Other (7)
Portecle (38)
Publishers (2674)
Revoked Certificates (30)
Root CA (89)
RSA Keys (2213)
Tools (46)
Tutorial (3)
What Is (22)
Windows (129)
Collections:
Other Resources:
OpenSSL "ca" Error "lookup failed for ca::default_ca"
Why I am getting the "variable lookup failed for ca::default_ca" error when running OpenSSL "ca" command?
✍: FYIcenter.com
You are getting the "variable lookup failed for ca::default_ca" error,
because OpenSSL "ca" command can not find the required "default_ca" option
in the configuration file.
For example, if you have the follow configuration file, test.cnf, without "default_ca" option defined:
C:\Users\fyicenter>type test.cnf # Unnamed section of generic options default_md = md5
You will get an error, because "default_ca" is a required option:
C:\Users\fyicenter>\local\OpenSSL-Win32\bin\openssl.exe OpenSSL> ca -in test.csr -keyfile my_ca.key -cert my_ca.crt -config test.cnf Using configuration from test.cnf variable lookup failed for ca::default_ca 5956:error:0E06D06C:configuration file routines:NCONF_get_string: no value:.\crypto\conf\conf_lib.c:324:group=ca name=default_ca error in ca
Fixing this error is easy. Just add the "default_ca" option in the unnamed section or in the [ca] section of the configuration file:
C:\Users\fyicenter>type test.cnf # Unnamed section of generic options # section for the "default_ca" option [ca] default_ca = my_ca_default
⇒ OpenSSL "ca" Error "... directory for new certificate ..."
2022-04-11, 29218👍, 1💬
Popular Posts:
Can I build a DH private key from an OpenSSL configuration file? Yes, you can build a DH private key...
Certificate Summary: Subject: GlobalSign RSA OV SSL CA 2018 Issuer: GlobalSign Expiration: 2028-11-2...
How to generate a new RSA key pair with a shorter key size using OpenSSL "genrsa" command? If you ne...
How to delete a root CA (Certificate Authority) certificate from Firefox? I don't know this root CA ...
Certificate summary - Owner: *.skype.com, Skype Technologies SA, Information Security, L=Luxembourg,...