[Freeipa-devel] [PATCH] 342 control the certificate subject in dogtag
Rob Crittenden
rcritten at redhat.com
Fri Dec 18 16:05:22 UTC 2009
Use the caIPAserviceCert profile for issuing service certs.
This profile enables subject validation and ensures that the subject
that the CA issues is uniform. The client can only request a specific
CN, the rest of the subject is fixed.
This is the first step of allowing the subject to be set at installation
time.
Also fix 2 more issues related to the return results migration.
Note that with the selfsign plugin it will still issue the subject that
was in the CSR.
rob
-------------- next part --------------
A non-text attachment was scrubbed...
Name: freeipa-342-dogtag.patch
Type: application/mbox
Size: 2454 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20091218/1c540a00/attachment.mbox>
More information about the Freeipa-devel
mailing list