Hi Jules,
I am sorry but we do not have any documentation on this - its doable put
requires some manual tweaks.
To import the certificates you can use the "openxpkicli
import_certificate" which will parse a given PEM block and populates it
into the certificates table. To make OpenXPKI recognize this as a
"local" entity it ususally needs a reference to a CSR item in the CSR
table which is also used to determine the "profile". For your purpose it
would be sufficient to create one item in the CSR table per profile and
link this for all certificates via column req_key.
You can also import a CRL so it can be downloaded but this wont set the
certificate status - you need to write a script that consumes your old
openssl status file or parses the CRL and set the status of the
certificate in the table by running a direct SQL command accordingly.
HTH
Oliver
Am 16.04.19 um 09:59 schrieb Jules Winnfield:
Dear OpenXPKI users,
From some days ago I am trying to migrate an OpenSSL server to a
solution more professional like OpenXPKI... But I have some doubts about
the process, and I don't find information or any manual about this
procedure...
Could you help me with this?
At the moment I have imported my CA in the OpenXPKI server, but I have
doubts about how import my CRL and all the current CRT files.
Are there any manual o reference for my case?
Thank you so much.
Best regards,
_______________________________________________
OpenXPKI-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openxpki-users
--
Protect your environment - close windows and adopt a penguin!
_______________________________________________
OpenXPKI-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openxpki-users
