Florent, Roberto, I'm with you. I need a similar functionality, too. What I want to do is:
- have one or two RA administrators approve a CSR - let the CA automatically issue the certificate (with a configurable delay of about 30 minutes to allow administrators to revoke their request if they notice an error) - export the issued certificates to the RA and the public frontend I will be running RA and CA on the same node. Public may be on a different node, but may also be on the same system. The CA is protected by a HSM that keeps the CA key permanently online and usable, allowing for automatic issuance. Before you ask: Yes, we really know what we are doing. :-) Chris Covell mentioned he has written some Perl wrapper to do this automatic issuance (using the Batch processor). It would be cool if this could get published. -- Chris...? Cheers Martin ------------------------------------------------------- This SF.Net email sponsored by Black Hat Briefings & Training. Attend Black Hat Briefings & Training, Las Vegas July 24-29 - digital self defense, top technical experts, no vendor pitches, unmatched networking opportunities. Visit www.blackhat.com _______________________________________________ Openca-Users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/openca-users
