Uploaded image for project: 'EJBCA'
  1. EJBCA
  2. ECA-2113

CA Tokentype ignored during installation

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: EJBCA 4.0.1
    • Fix Version/s: EJBCA 4.0.2
    • Component/s: Install-script
    • Labels:
      None
    • Environment:
      - Windows Server 2008 32-bit
      - JBOSS 5.01
      - Oracle Java SDK 1.6.; Unlimited Strength Cryptography Extension Policy Files
      - ProtecServer HSM
      - apache ant 1.8.2

      Description

      I want to create an Admin CA during installation of EJBCA with keys stored within the Protectserver HSM. The keys were generated in advance using the clientToolBox tool. The config file catoken.properties was modified to use these keys. In install.properties the catokentype is set to org.ejbca.core.model.ca.catoken.PKCS11CAToken and ca.tokenproperties points to the file location.

      However, during 'ant install' I get the following message:

      ejbca:init:
      [echo]
      [echo] ------------------- CA Properties ----------------
      [echo] ca.name : EJBCA4_Admin_CA_v1
      [echo] ca.dn : CN=EJBCA4 Admin CA v1,O=intelliCard AG,C=CH
      [echo] ca.tokentype : soft
      [echo] ca.keytype : RSA
      [echo] ca.keyspec : 4096
      [echo] ca.signaturealgorithm : SHA1WithRSA
      [echo] ca.validity : 5475
      [echo] ca.policy : null
      [echo] ca.tokenproperties :
      [echo] httpsserver.hostname : localhost
      [echo] httpsserver.dn : CN=localhost,O=intelliCard AG,C=CH
      [echo] superadmin.cn : SuperAdmin
      [echo] superadmin.dn : CN=SuperAdmin
      [echo] superadmin.batch : true
      [echo] appserver.home : D:\jboss
      [echo]

      ca.tokentype is set to 'soft' instead of what is set in the install.properties. After the installation has finished I can activate the CA but in the Admin GUI the CA Tokentype is also set to 'soft'.

      I couldn't find any erorrs in the JBOSS log or during bootstrap, install or deploy. It seems everything is ok except that it does not take the configured ca tokentype.

      Please find enclosed:

      • JBOSS logs
      • output of bootstrap, install and deploy
      • all modified property files
      • screensho from the web GUI

        Attachments

          Activity

            People

            Assignee:
            johan Johan Eklund
            Reporter:
            twe Thomas Weber
            Verified by:
            Tomas Gustavsson
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: