[Pki-users] Can I change the CN = CA Signing Certificate to something else?
Niranjan M.R
mrniranjan at redhat.com
Fri May 15 05:42:01 UTC 2015
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 05/15/2015 10:59 AM, Ben Peck wrote:
> I'm running Fedora 21 with Dogtag 10.2.1-3. My CA's Certificate was given "CA Signing Certificate" as its CN, and I'm wondering how it got that way
> and it might be customized on install.
>
> Running pkispawn interactively definitely didn't give me an opportunity to supply a name, and looking over the config file I could customize also
> doesn't seem to provide an opportunity to customize this:
>
> Dogtag 9 gave the opportunity to customize this as part of the initial setup - where is this done in version 10?
You could pass an inf file to pkispawn
pkispawn -s CA -f /tmp/ca_instance.inf -v
In the inf file you could customize. Sample inf file: http://fpaste.org/222174/43166849/
>
> thanks,
> Ben
>
>
> |pki_admin_email=caadmin at example.com <mailto:caadmin at example.com>
> pki_admin_name=caadmin
> pki_admin_nickname=caadmin
> pki_admin_password=Secret123
> pki_admin_uid=caadmin
> pki_backup_keys=True
> pki_backup_password=Secret123
> pki_client_database_password=Secret123
> pki_client_database_purge=False
> pki_client_pkcs12_password=Secret123
> pki_ds_base_dn=dc=ca,dc=example,dc=com
> pki_ds_database=ca
> pki_ds_password=Secret123
> pki_security_domain_name=EXAMPLE
> pki_token_password=Secret123|
>
>
>
>
>
>
>
> _______________________________________________
> Pki-users mailing list
> Pki-users at redhat.com
> https://www.redhat.com/mailman/listinfo/pki-users
>
- --
Niranjan
irc: mrniranjan
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iKYEARECAGYFAlVVhylfFIAAAAAALgAoaXNzdWVyLWZwckBub3RhdGlvbnMub3Bl
bnBncC5maWZ0aGhvcnNlbWFuLm5ldEY3OTE3QTg3ODE0RkVCQ0YyNjgyOTRENjJF
RURDNTVGNjA0N0M3QzcACgkQLu3FX2BHx8cVBgCfR0V7nHJSeUOQR2VdTcehXISQ
piEAoJwjWh72sSwSZ2L2o0bq0pU4IJr4
=SjGX
-----END PGP SIGNATURE-----
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0x6047C7C7.asc
Type: application/pgp-keys
Size: 1893 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/pki-users/attachments/20150515/9fd02199/attachment.bin>
More information about the Pki-users
mailing list