When ticket #57 is implemented IPA would be able to issue certificates with different contents and extensions. But all certificates will be issued by IPA CA. This ticket calls for a capability to associate a subCA of IPA CA to a profile or create a completely new CA (served by IPA) and associate a profile with this CA.
It should be possible to associate different profiles with different CAs so it should be a many to many relationship.
Ticket has been cloned to Bugzilla: https://bugzilla.redhat.com/show_bug.cgi?id=1200731
master:
The feature development was not finished before GA, so we will need to postpone it to next feature release.
4.4 priority
Core is implemented. 4.4.0 was tagged therefore closing this as fixed.
A new ticket should be opened for any missing part or a regression.
tests fixed in 4.4.1:
Metadata Update from @dpal: - Issue assigned to ftweedal - Issue set to the milestone: FreeIPA 4.4
Login to comment on this ticket.