Author Topic: "Create Certification Authority Certificate" fails  (Read 4060 times)

JensJacobsen

  • Zen Apprentice
  • *
  • Posts: 4
  • Karma: +0/-0
    • View Profile
"Create Certification Authority Certificate" fails
« on: August 13, 2008, 02:15:39 pm »
Create Certification Authority Certificate manager fails to create a certificate on one of my machines.

There is no error message on screen and in the logs (that I can find).

I suspect it is related to that I deleted/disabled an already existing certificate because when I did that there was a message on screen (something like an error occurred in ebox and please contact support) after this no certificates appear in the list and no new certificates can be created (or at least they do not appear on the screen).

So how do I clean out the Certificate Manager and reset everything related to openvpn?

Regards
Jens

javi

  • Zen Hero
  • *****
  • Posts: 1042
  • Karma: +0/-0
    • View Profile
Re: "Create Certification Authority Certificate" fails
« Reply #1 on: August 13, 2008, 04:25:05 pm »
Hi,

Try this to see if it helps:

Code: [Select]
sudo rm -rf /var/lib/ebox/CA

If the certificate manager works but the openVPN doesn't, ask again here and I'll tell you how to remove the existing openVPN configuration.


JensJacobsen

  • Zen Apprentice
  • *
  • Posts: 4
  • Karma: +0/-0
    • View Profile
Re: "Create Certification Authority Certificate" fails
« Reply #2 on: August 14, 2008, 05:17:02 am »
Hi Javi

Worked like a charm. Thanks :-)

Regards
Jens

vlamgat

  • Zen Apprentice
  • *
  • Posts: 1
  • Karma: +0/-0
    • View Profile
Re: "Create Certification Authority Certificate" fails
« Reply #3 on: September 18, 2008, 12:01:14 pm »
hi guys,

I don't even have a /var/lib/ebox/CA directory to delete on my install??  :(

I've got the latest ubuntu build and when I try and configure the CA, it returns the following error:

Unknown error. Given the OpenSSL output: Generating a 1024 bit RSA private key .........................++++++ ......++++++ writing new private key to '/home/eboxCA/private/cakey.pem' /home/eboxCA/private/cakey.pem: No such file or directory 30062:error:02001002:system library:fopen:No such file or directory:bss_file.c:352:fopen('/home/eboxCA/private/cakey.pem','w') 30062:error:20074002:BIO routines:FILE_CTRL:system lib:bss_file.c:354: error in req

I've tried manually creating the directories it says can't be found and whilst the config appears to 'go through' I just get returned to the screen prompting me for org name and certificate lifespan :-(

Any ideas would be greatly appreciated!

sixstone

  • Zentyal Staff
  • Zen Hero
  • *****
  • Posts: 1417
  • Karma: +26/-0
    • View Profile
    • Sixstone's blog
Re: "Create Certification Authority Certificate" fails
« Reply #4 on: September 18, 2008, 12:42:46 pm »
eBox home is /var/lib/ebox, it is quite strange that eBox user home is /home/ebox.

Best regards,
My secret is my silence...

calmera

  • Zen Apprentice
  • *
  • Posts: 1
  • Karma: +0/-0
    • View Profile
Re: "Create Certification Authority Certificate" fails
« Reply #5 on: August 20, 2009, 12:40:36 pm »
I had the same problem when I used the ISO and registered a user named 'ebox' during installation. After a reinstall with a different username the problem was solved.

javi

  • Zen Hero
  • *****
  • Posts: 1042
  • Karma: +0/-0
    • View Profile
Re: "Create Certification Authority Certificate" fails
« Reply #6 on: August 20, 2009, 12:50:14 pm »
Guys,

Did you create a user called "ebox" during the installation process? If you did that you can run into troubles very easily...

Calmera has pointed this out already :)

kid_english

  • Zen Apprentice
  • *
  • Posts: 41
  • Karma: +0/-0
    • View Profile
Re: "Create Certification Authority Certificate" fails
« Reply #7 on: September 17, 2009, 12:28:06 pm »
Hi,

Try this to see if it helps:
Code: [Select]
sudo rm -rf /var/lib/ebox/CA

Worked for me, thanks Javi, brilliant

SamE

  • Zen Apprentice
  • *
  • Posts: 31
  • Karma: +2/-0
    • View Profile
Re: "Create Certification Authority Certificate" fails
« Reply #8 on: September 25, 2018, 03:14:41 pm »
Is it still possible to do this on a modern version of Zentyal?
The /var/lib/ebox does not exist