Hi,
seems that for certificates created by univention-certificate there is no X509v3 server extension activated. Is this a bug or is there a reason behind this?
Cheers,
SirTux
Hi,
seems that for certificates created by univention-certificate there is no X509v3 server extension activated. Is this a bug or is there a reason behind this?
Cheers,
SirTux
As workaround I’ve added this line in the openssl.cnf:
[ v3_req ]
[...]
extendedKeyUsage = serverAuth,clientAuth
[...]
Afterwards I’ve recreated the certificate: