EldoS | Feel safer!

Software components for data protection, secure storage and transfer

how can i add CRLDistributionPoints to my certificate?

Also by EldoS: CallbackRegistry
A component to monitor and control Windows registry access and create virtual registry keys.
#7547
Posted: 09/09/2008 03:43:38
by reza Goki (Standard support level)
Joined: 02/25/2008
Posts: 30

hi, i want add a CRLDistributionPoints to my certificate but it dosnt work any way.
i try this solution as below please help me to fix this.

my code :

Cert.Extensions.CRLDistributionPoints.Count = 1;

Cert.Extensions.CRLDistributionPoints.Value =
SBUtils.Unit.StrToUTF8("http://server.rsa.local//CertEnroll//RSA%20Co.%20CA.crl");

Cert.Extensions.CRLDistributionPoints.Critical = true;

when i generat the certificate it doesnt have any CRLDistributionPoints.

thank for your attention.


#7548
Posted: 09/09/2008 03:50:26
by Ken Ivanov (EldoS Corp.)

Besides setting up the Cert.Extensions.CRLDistributionPoints property, you also have to adjust the Cert.Extensions.Included property accordingly.
#7549
Posted: 09/09/2008 06:19:15
by reza Goki (Standard support level)
Joined: 02/25/2008
Posts: 30

i checked your solution but it didn't work at all.
please help me.
my new code is:

Cert.Extensions.CRLDistributionPoints.Count = 1;

Cert.Extensions.CRLDistributionPoints.Value = SBUtils.Unit.StrToUTF8("http://server.rsa.local//CertEnroll//RSA%20Co.%20CA.crl");

Cert.Extensions.CRLDistributionPoints.Critical = true;
Cert.Extensions.Included = 1;


can you send me a sample for add crl to a certificate. tanks allot
#7550
Posted: 09/09/2008 06:28:28
by Mykola Olshevsky (Basic support level)
Joined: 07/07/2005
Posts: 450

0x01 is a ceAuthorityKeyIdentifier, you should set it to 0x1000 (ceCRLDistributionPoints)
#7570
Posted: 09/10/2008 03:32:29
by reza Goki (Standard support level)
Joined: 02/25/2008
Posts: 30

hi,tanks allot it works but it has a problem. when i check crl distribution points in the certificate i see this message information not available . you can see this problem as attached. how can i fix it? i sent too you my new code as below.

Cert.Extensions.CRLDistributionPoints.Count = 1;
Cert.Extensions.CRLDistributionPoints.Value = SBUtils.Unit.BytesOf("http://server.rsa.local//CertEnroll//RSA%20Co.%20CA.crl");
Cert.Extensions.Included = 0x1000;



#7571
Posted: 09/10/2008 04:08:05
by Mykola Olshevsky (Basic support level)
Joined: 07/07/2005
Posts: 450

Please read documentation about this extension at http://www.eldos.com/documentation/sbb/documentation/ref_cl_crldistributionpointsextension.html
You should use .DistributionPoints property, not the .Value one.
#7572
Posted: 09/10/2008 05:28:09
by reza Goki (Standard support level)
Joined: 02/25/2008
Posts: 30

i checked it but it doesn't have distribution Points property.
it only have count,critical,oid and value property. you can see this as attached.
how can i use .DistributionPoints, what is it?
i see this property in help document but it isn't available in crlDistributionPoints of certificate extensions.


#7573
Posted: 09/10/2008 05:52:28
by Mykola Olshevsky (Basic support level)
Joined: 07/07/2005
Posts: 450

It is indexer property.
At first set .Count to the needed value (1 or so), after - use .get_DistributionPoints[0] object.
#7574
Posted: 09/10/2008 06:41:27
by reza Goki (Standard support level)
Joined: 02/25/2008
Posts: 30

tanks allot. i fixed it. have a good day. tanks for your attention.
bye
Also by EldoS: CallbackFilter
A component to monitor and control disk activity, track file and directory operations (create, read, write, rename etc.), alter file data, encrypt files, create virtual files.

Reply

Statistics

Topic viewed 2252 times

Number of guests: 1, registered members: 0, in total hidden: 0




|

Back to top

As of July 15, 2016 EldoS Corporation will operate as a division of /n software inc. For more information, please read the announcement.

Got it!