Private Object IDs and OID lists for the distinguished name or extended key usage can be added in files listed below. The files are:
The search path for all the files is listed below. All files except oids.txt are searched in the order listed below and search stops at the first file found. The oids.txt file is searched in reversed order and all oids.txt files found are loaded.
The path of the user settings directory depends on the
operating system and version.
The path where XCA looks for this file is shown in the
About dialog of XCA as
User settings path.
All Object IDs that are not official, but belong to your company
or organisation can be added in the file
All possible locations for this file are searched and all
found are loaded. This way the application-installer adds
some in /usr/share/xca, the Administrator in /etc/xca and the user in
$HOME/.xca. The format of this file is:
Leading and trailing spaces between the colons and the text are ignored. Lines starting with a # are ignored.
The files containing OID lists (
are handled in a different way, only the first one found is used.
The format of this files is one entry per line. The entry can be either the
numerical OID like
22.214.171.124.126.96.36.199.2, the short name like
iKEIntermediate or the long name
IP security end entity.
Lines starting with a # are ignored.
If this files shall contain new in-official OIDs, they must be also mentioned
in one of the
If you want to / need to add your own company specific subject entry to your certificate it can be done without recompiling XCA.
oids.txtfile listed in New OIDs like:
188.8.131.52.4.1.12345.1: zodiacSign: Zodiac Sign
cp /usr/share/xca/dn.txt ~/.xca/dn.txt && echo "zodiacSign" >> ~/.xca/dn.txt
Options->Distinguished name. In the
Explicit subject entriesselect
Zodiac Sign, click
Add, move it by dragging it in the list and click OK when satisfied.