[Freeipa-users] Openvpn and Certificates
Andrew Holway
andrew.holway at gmail.com
Thu Apr 2 07:02:09 UTC 2015
Is it possible to generate certs without the host having an entry in the
DNS?
On 2 April 2015 at 08:55, Andrew Holway <andrew.holway at gmail.com> wrote:
> And et voila! It works! Although it does feel a bit hacky :)
>>>
>> I do it the same way as I control my systems and can be sure there is
>> one user per system for VPN access. Works nicely.
>>
>
> Is it possible to manage key revocation? I understand that this mechanism
> is mostly quite broken. How long are you making Certificates valid for?
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20150402/74f17a41/attachment.htm>
More information about the Freeipa-users
mailing list