KCA OneStep 6.0 Flat File Demo not working
2 years ago
Originally Published: 2002-01-11
Article Number
000052440
Applies To
Keon Certificate Authority OneStep 6.0
RSA Certificate Manager OneStep 6.8
Keon CA using OneStep sample
Sun Solaris 2.8
Issue
KCA OneStep 6.0 Flat File Demo not working
Installed KCA 6.0 on Solaris 8 and configured.  Installed KCA 6.0 OneStep on same system.  Setup OneStep SSL and all config files.  Since this is Solaris, the sample .so files are installed in the /plugins directory.   Went to the OneStep web page, selected Flat File, and entered proper information. Clicked Accept and got error.
Error: "The following error occurred. Certificate Generation Internal Error. Please click the button below to try again." in Keon Certificate Authority OneStep
The OneStep html page source shows:

function print_status()
{
 var status = "1350";
 var pstatus = "1356";
 var lstatus = "";
 var astatus = "";
 var message = "";

Cause
The KCA OneStep file ownership is incorrect. When installed, the files have an ownership of 115:staff which is incorrect.
File ownership of OneStep/plugin/flatdemo.so, OneStep/ssl/certs/onestep.cert, and OneStep/ssl/private/onestep.key was set to root:root which is incorrect.
Resolution
When you install KCA OneStep on UNIX, the ownership of the WebServer files must be corrected.

Go to the KCA_Install_DIR as UNIX administrator and run:
  chown -R nobody:nogroup WebServer

This example assumes that a user "nobody" and a group "nogroup" were used for webserver during KCA installation. Use appropriate user:group that was configured during the KCA installation.

Related Articles

Trending Articles

Don't see what you're looking for?