[OpenXPKI-users] saving password für key to database and pkcs12 question

Tue, 25 Oct 2016 06:49:51 -0700 

Hello,

I have a question about storing the secret for the signer key.

This is in the crypto.yaml of the realm:

secret:
  default:
    label: One Piece Password
    method: plain
    cache: daemon

So within the GUI I can go to 'Manage Secrets' and can enter the password for 
this secret group which is also saved into the database.

When restarting the openxpki service the password is lost, also from the 
database.

The manual says:
This tells the OpenXPKI daemon to ask for the default only once and then store 
it "forever". If you want to have the secret cleared at the end of the session, 
set cache: session.

Cache is set to daemon. Is there something wrong?

openxpki.log is looking fine. All I can see there is:
2016/10/25 15:24:20 openxpki.application.FATAL:15190 
[OpenXPKI::Server::Workflow (790); akriege1(RA_Operator)@2a5a#0] Workflow save 
requested during startup - wont save! (running)

But this also showing up when going to 'Process Information' and 'System 
Status'. Password is not lost when doing this, it's only when the service is 
restarted.


Is it also possible when you create the key on the server to have the option to 
download cert/key as pkcs12?


Mit freundlichen Grüßen / Best regards

Andreas Krieger

operational services GmbH & Co. KG
Junior Systems Engineer, Mirrorserver/2
T3-Application Services North

Pascalstrasse 11
10587 Berlin | Germany
Telefon +49 375 60619 905

[email protected]<mailto:[email protected]>
http://www.operational-services.de/

operational services GmbH & Co. KG
Sitz der Gesellschaft: Frankfurt am Main
HRA: 42500 (AG Frankfurt am Main)
Vorsitzender des Aufsichtsrates: Dr. Roland Krieg
Geschäftsführer: Dr. Ulrich Müller (Sprecher) / Frank Oidtmann

Persönlich haftende Gesellschafterin:
operational services Beteiligungs-GmbH
Sitz der Gesellschaft: Frankfurt am Main
HRB: 74974 (AG Frankfurt am Main)


------------------------------------------------------------------------------
The Command Line: Reinvented for Modern Developers
Did the resurgence of CLI tooling catch you by surprise?
Reconnect with the command line and become more productive. 
Learn the new .NET and ASP.NET CLI. Get your free copy!
http://sdm.link/telerik
_______________________________________________
OpenXPKI-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openxpki-users

Reply via email to