[Pki-devel] [PATCH] 866 Fixed problem installing subordinate CA with HSM in FIPS mode.
Christina Fu
cfu at redhat.com
Wed Nov 16 02:55:37 UTC 2016
looks good. if tested to work, ack.
Christina
On 11/15/2016 01:57 PM, Endi Sukma Dewata wrote:
> Due to certutil issue (bug #1393668) the installation code has
> been modified to import certificates into the NSS database in
> two steps. This workaround is needed to install subordinate CA
> with HSM in FIPS mode.
>
> First, the certificate will be imported into the HSM using the
> HSM password without the trust attributes. Then, the certificate
> will be imported into the internal token using the internal token
> password with the trust attributes.
>
> https://fedorahosted.org/pki/ticket/2543
>
>
>
> _______________________________________________
> Pki-devel mailing list
> Pki-devel at redhat.com
> https://www.redhat.com/mailman/listinfo/pki-devel
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/pki-devel/attachments/20161115/d2dd716b/attachment.htm>
More information about the Pki-devel
mailing list