Hi! :)

I try install SSL for my ioFTPD (beta5-8-5r) ... but ... when i execute bat a file ...

200-Error: Can't create the key of the subject ('SSL')
200-Failed


First, make sure you have those two variables in your etc\ioftpd.env:

SYSTEMDRIVE=%[environment(SYSTEMDRIVE)]
SYSTEMROOT=%[environment(SYSTEMROOT)]

[Ok]

Restart ioFTPD if you had to change your ioftpd.env.

[Ok]

Disable all SSL functions (simply commenting the Certificate_Name lines would do).

;Certificate_Name = 192.168.1.10

[Ok]

Place the makecert.exe & certmgr.exe in a directory that you can access from your FTP. Both executables can be downloaded directly from Microsoft (choose the x86 link).

put in ... c:\ioftpd\system ...

[Ok]

- Create a .bat file in the same directory, which would contain:
makecert.exe -r -n "CN=YOUR_CERT_NAME_HERE" -b 01/01/2004 -e 01/01/2006 -eku 1.3.6.1.5.5.7.3.1 -ss my -sr CurrentUser -a sha1 -sk YOUR_CERT_NAME_HERE -sky exchange -sp "Microsoft RSA SChannel Cryptographic Provider" -sy 12

YOUR_CERT_NAME_HERE = SSL

[Ok]

Login your FTP and execute your .bat file through a SITE EXEC command:
SITE EXEC your.bat

200-Error: Can't create the key of the subject ('SSL')
200-Failed

[FAiL] ...


Thx for any idea ... :)

I'm assuming you followed the knowledge base guide? http://www.ioftpd.com/kb/view.php?kbid=76

Which Windows version are you using? It's not Windows NT4 workstation by chance is it?

Yes ... i follow the knowledge base guide ...

WIN-XP with SP1 ...

YOUR_CERT_NAME_HERE = SSL

Show the exact line u used.
I tried with
makecert.exe -r -n "CN=SSL" -b 01/01/2004 -e 01/01/2006 -eku 1.3.6.1.5.5.7.3.1 -ss my -sr CurrentUser -a sha1 -sk SSL -sky exchange -sp "Microsoft RSA SChannel Cryptographic Provider" -sy 12
and it worked just fine.

edit

read again

By steps...
- I have decompressed script that creates the certificate.
- I have executed the file bat, and have introduced the name of the certificate. A file has generated ioftpd.cer.
- I have moved executables files and ioftpd.cer to the system directory to ioftpd, ande here i have executed bat file. with the error.

It does not matter where the certificate or the executables are. You must import the certificate (if you have not done so already). The makecert.exe parameters provided in that knowledge base article will automatically import the certificate for you.

thescript your talking about is something else completely.
Not at all related to anything mentionned in the knowledge base.

Either u follow what the kb says, or u follow the instructions in the script, but trying both together is asking for trouble.

I've tried to install the SSL certificate using the http://www.ioftpd.com/kb/view.php?kbid=76 but I'm getting the same error as SeVeN did.

I've put this temp line in ioftpd.ini
myssl = EXEC mybat.bat
to execute the makecert bat-file. This is the outcome:
[R] site myssl
[R] 200-
[R] 200-C:\ioFTPD\system>makecert.exe -r -n "CN=iGELKOTT" -b 01/01/2004 -e 01/01/2006 -eku 1.3.6.1.5.5.7.3.1 -ss my -sr CurrentUser -a sha1 -sk iGELKOTT -sky exchange -sp "Microsoft RSA SChannel Cryptographic Provider" -sy 12
[R] 200-Error: Can't create the key of the subject ('iGELKOTT')
[R] 200-Failed [R] 200 Command successful.
If I run the bat-file outside ioFTPD the certificate is installed without problem which tends to indicate that the problem is somewhere in the "ioftpd-section".

I have the
SYSTEMDRIVE=%[environment(SYSTEMDRIVE)]
SYSTEMROOT=%[environment(SYSTEMROOT)]
lines in my ioftpd.env and I restarted ioftpd. I've also tried different versions of the makecert.exe (beginning with the on linked in the kb).

Does anyone have any suggestions? I can't come to think of anything at the moment.

Well, I made it the easy way :)

http://www.ioftpd.com/scripts/script.php?id=95

Still doesn't know why it didn't work the kb-way though.

i fixed weeks ago ... problem in the wonderful windows.

:P

Originally posted by SeVeN
problem in the wonderful windows.
Impossible. ;)