Failed to sign the server certificate with the root key command in SOI: index.txt (could not load/parse file)
search cancel

Failed to sign the server certificate with the root key command in SOI: index.txt (could not load/parse file)

book

Article ID: 414618

calendar_today

Updated On:

Products

CA Service Operations Insight (SOI)

Issue/Introduction

While trying to generate Certificates and Keystore for SOI Manager or samUI and following Generate Certificates and Keystore you get the following error  on step c: sign the server certificate with the root key command: openssl.exe ca -keyfile CASOIRoot.key -cert CASOIRoot.pem -notext -in soi1.csr -out soi1.crt -days 3650

 

Error:

Using configuration from C:\CERTS\openssl.cnf
08040000:error:80000002:system library:BIO_new_file:No such file or directory:crypto\bio\bss_file.c:67:calling fopen(./demoCA/index.txt,r)
08040000:error:80000080:BIO routines:BIO_new_file:no such file:crypto\bio\bss_file.c:75:
Problem with index file: ./demoCA/index.txt (could not load/parse file)

 

 

Environment

SOI 4.3

Cause

When using the openssl command, OpenSSL expects a specific directory structure (the CA directory) to exist and contain certain files.
By default, OpenSSL expects the CA files under ./demoCA/ if the file and directory is not there it will generate this error. 

Resolution

Run the following commands: 

 

  • Create the directory and structure
    mkdir demoCA
    mkdir demoCA\certs demoCA\crl demoCA\newcerts demoCA\private

 

  • Create an empty index.txt
    type NUL > demoCA\index.txt


  • reate a serial file with a starting serial number
    echo 1000 > demoCA\serial


    Now Verify both files

    dir demoCA
    type demoCA\serial
    type demoCA\index.txt

     

    You should see something like: 

         

 

 

After this run again the same command and it should suceded: 

 

 openssl.exe ca -keyfile CASOIRoot.key -cert CASOIRoot.pem -notext -in soi1.csr -out soi1.crt -days 3650

Powered by Wolken Software