[Pki-devel] [PATCH] 698 Added support for cloning 3rd-party CA certificates.
Ade Lee
alee at redhat.com
Fri Mar 18 20:42:42 UTC 2016
ack
On Fri, 2016-03-18 at 11:31 -0500, Endi Sukma Dewata wrote:
> The installation code has been modified such that it imports all
> CA certificates from the PKCS #12 file for cloning before the
> server is started using certutil. The user certificates will
> continue to be imported using the existing JSS code after the
> server is started. This is necessary since JSS is unable to
> preserve the CA certificate nicknames.
>
> The PKCS12Util has been modified to support multiple certificates
> with the same nicknames.
>
> The pki pkcs12-cert-find has been modified to show certificate ID
> and another field indicating whether the certificate has a key.
>
> The pki pkcs12-cert-export has been modified to accept either
> certificate nickname or ID.
>
> The pki pkcs12-import has been modified to provide options for
> importing only user certificates or CA certificates.
>
> https://fedorahosted.org/pki/ticket/1742
>
> _______________________________________________
> Pki-devel mailing list
> Pki-devel at redhat.com
> https://www.redhat.com/mailman/listinfo/pki-devel
More information about the Pki-devel
mailing list