dogtagpki

Clone
Source Code
GIT

#1668 Option to enable/disable cert key archival
Closed: migrated 3 years ago by dmoluguw. Opened 8 years ago by edewata.

Closed: migrated
Reopen Issue

Currently when KRA is installed the CA will automatically start archiving certificate keys. However, KRA actually works as a general-purpose key archival (e.g. IPA vault, Barbican) and someone might not necessarily want to archive certificate keys automatically.

Proposed solution:

  • Provide a CA CLI to enable/disable certificate key archival post-installation.
  • Provide a KRA deployment parameter for enabling certificate key archival in CA. The pkispawn will call the CA CLI based on this parameter. To preserve the current behavior the value will be True by default.

Per CS/DS meeting of 11/02/2015: 10.4 - minor

Metadata Update from @edewata:
- Issue set to the milestone: UNTRIAGED
7 years ago

Dogtag PKI is moving from Pagure issues to GitHub issues. This means that existing or new
issues will be reported and tracked through Dogtag PKI's GitHub Issue tracker.

This issue has been cloned to GitHub and is available here:
https://github.com/dogtagpki/pki/issues/2227

If you want to receive further updates on the issue, please navigate to the
GitHub issue and click on Subscribe button.

Thank you for understanding, and we apologize for any inconvenience.

Metadata Update from @dmoluguw:
- Issue close_status updated to: migrated
- Issue status updated to: Closed (was: Open)
3 years ago

Login to comment on this ticket.

Metadata
None
None
None
None
minor
None
None
None
enhancement
None
None
None
None
None
Community
minor
None
None
None
None
None
Auth
10.4
Powered by Pagure 5.13.3
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.