OpenSSL Error Codes

TXT_DB error number 2

This thing happens when you try to sign a certificate that shares the same common data as another certificate. You cannot have two certificates that look the same.

Soloution:
Either remove them by hand from the database, or properly revoke them using ‘openssl ca -revoke xyz.crt’.
You could also allow two this by editing the file “CA_database.txt.attr” and set “unique_subject = no

This entry was posted in OpenSSL, PKI. Bookmark the permalink.