The DNP3 Secure Authentication v5 (SAv5) protocol requires issuance of certificates for users containing the IEC 62351-8 X.509 extension.
Once multiple profile support arrives in FreeIPA, provide a pre-canned DNP3 ID certificate profile.
(Attribute Certificates are not yet supported in Dogtag; if it becomes necessary to support them, new tickets should be filed for Attribute Certificate profiles and the associated work).
Linked to Bugzilla bug: https://bugzilla.redhat.com/show_bug.cgi?id=1200694 (Red Hat Enterprise Linux 7)
Not required for GA.
attachment freeipa-ftweedal-0037-Add-profile-for-DNP3-IEC-62351-8-certificates.patch
master:
ipa-4-2:
Metadata Update from @ftweedal: - Issue assigned to ftweedal - Issue set to the milestone: FreeIPA 4.2.1
Login to comment on this ticket.