<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
<HTML>
<HEAD>
 <META NAME="GENERATOR" CONTENT="LinuxDoc-Tools 0.9.21">
 <TITLE>XCA : Common actions</TITLE>
 <LINK HREF="xca-6.html" REL=next>
 <LINK HREF="xca-4.html" REL=previous>
 <LINK HREF="xca.html#toc5" REL=contents>
</HEAD>
<BODY>
<A HREF="xca-6.html">Next</A>
<A HREF="xca-4.html">Previous</A>
<A HREF="xca.html#toc5">Contents</A>
<HR>
<H2><A NAME="s5">5.</A> <A HREF="xca.html#toc5">Common actions</A></H2>

<P>Many actions are common to all crypto parts and are mentioned here once for all.
The goal of this application is to provide an easy to use signing-tool and
also a common place for all selected PKI items like Requests or Certificates.</P>
<H2><A NAME="ss5.1">5.1</A> <A HREF="xca.html#toc5.1">Importing items</A>
</H2>

<P>The import of an item can be done by either clicking the import button on the right
or via the context menu available by right clicking into the list.
The import function is smart enough to probe all known formats independent
of the file extension:
<UL>
<LI><CODE>Keys:</CODE>  PEM private key, PEM public key, DER private key, DER public key, PKCS#8 private key.</LI>
<LI><CODE>Requests</CODE> DER request, PEM request, Netscape SPKAC request.</LI>
<LI><CODE>Certificates</CODE> DER certificate, PEM certificate
(PKCS#12 and PKCS#7 certificates must be imported with an extra button,
because they can contain more than one certificate and key)</LI>
</UL>

After selecting the filename XCA will probe for the known formats of that item
and in case of an error it prompts the <CODE>last</CODE> OpenSSL error message.
It is possible to select more than one file by selecting them with SHIFT click.</P>
<P>Also the <CODE>Import</CODE> menu may be used to load items. Next to the filetypes
above, it also supports <CODE>PEM</CODE> import. PEM describes the encoding
instead of the filetype. So a PEM file can be any type of private key, crl
certificate or csr. This import facility discovers the type and loads it.</P>

<P>When importing more than one Key, CRL, Certificate or Request
all items are shown in a Multi-import dialog.
When importing a PKCS#7 or PKCS#12 item, the contained Keys and Certificates are shown in the Multi-import dialog.
By using the Multi-import dialog the items can be examined, imported or dropped.</P>

<P>After reading the item it searches for this item in the database and if it
is unique, the item is stored in the database. Otherwise it shows a message
containing the internal name of this item in the database.</P>

<H2><A NAME="ss5.2">5.2</A> <A HREF="xca.html#toc5.2">Details of an item</A>
</H2>

<P>The details dialog can be accessed by double clicking the item, by the context menu or by
the button on the right.
The names of the issuers certificate and the corresponding key are clickable and their
content will be shown on "double-click"</P>

<H2><A NAME="ss5.3">5.3</A> <A HREF="xca.html#toc5.3">Renaming an item</A>
</H2>

<P>An Item can be renamed via the context menu by right-clicking on the item,
by pressing &lt;F2&gt; or by the <EM>Rename</EM> button on the right border.
If the new name of the item already exists in the database a <CODE>_01</CODE>
will be appended to keep the internal name unique.</P>

<H2><A NAME="ss5.4">5.4</A> <A HREF="xca.html#toc5.4">Deleting Items</A>
</H2>

<P>Items can be deleted by the button on the right or via the context menu.
If a certificate signed by this application is going to be removed
the application will warn you once more, because you can not revoke a
deleted certificate. Thus only delete a certificate signed by you
if you never exported it. Certificate signing requests can be deleted
when they get signed, because they are not needed anymore.
The request can be recovered from the resulting certificate by
exporting the certificate to a request.
This is however only possible if you own the private key of the
certificate. Multiple items may be selected to delete them all at once.</P>



<HR>
<A HREF="xca-6.html">Next</A>
<A HREF="xca-4.html">Previous</A>
<A HREF="xca.html#toc5">Contents</A>
</BODY>
</HTML>