Can a DRAC5 accept a self signed SSL certificate?

[W Sanders]

I have an internal CA I have set up to allow users to accept one
internal trusted cert and then all browsers certs will work when signed
with that cert, and users won't be pestered with "Accept Cert?"
messages.

This procedure works fine with Apache but I have not been able to
generate a certificate that the DRAC5 accepts, I get "Attempted to
upload an invalid certificate" every time,

My cert is generated with this command: openssl x509 -req -in csr.txt
-out  DRACcert.pem -md5 -extfile ./CAextfile -signkey private/cakey.pem
-days 3650

csr.txt is the CSR generated by the DRAC and my CA private key is
"private/cakey.pem". The extfile contains the extensions
basicConstraints=critical,CA:TRUE which are required by Apache, but the
DRAC also rejects the cert if these extensions are omitted.

So, Has anyone ever gotten the DRAC to accept a self-signed cert?

Thanks

-Wiley Sanders
 http://wsanders.net

Parameters of the generated cert are as follows (output of "openssl
x509 -in  DRACcert.pem -text"):

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            9a:2d:7d:38:11:41:f1:99
        Signature Algorithm: md5WithRSAEncryption
        Issuer: [CN goes here, should not matter.]
        Validity
            Not Before: Apr 11 21:10:08 2008 GMT
            Not After : Apr  9 21:10:08 2018 GMT
        Subject: [CN goes here, should not matter]...
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
            RSA Public Key: (1024 bit)
                Modulus (1024 bit):
                    ...
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: critical
                CA:TRUE
    Signature Algorithm: md5WithRSAEncryption




__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com