Hi. There are some different soft required different CAs way. And how I image it: 1. System administrator issues Root CA via Web UI, including filling of necessary fields;; 2. Using issued Root CA, system administrator issues all 3 (or more) intermediate CAs via Web UI, of course with filling of necessary fields;; 3.Some soft, for example, Vpn server request server certificate from, for example intermediate CA1 in auto mode - request for issuing of new one or request of renewal existing and sysadmin may see the request at Web UI and to approve it or to decline it or to set up checkbox looks like "auto issue" for such kind of certificates; 4. Some user sends client certificate for issuing by intermediate CA1. And it is issued at auto mode, if appropriate checkbox exists or under sysadmin control. All of these is happened at on-line mode. If it' s possible, it is so good.
And is there deb packages for Ubuntu 18.04 ? пн, 16 нояб. 2020 г. в 10:07, Oliver Welter <[email protected]>: > Hi, > > besides the fact that I don't understand why you want to issue that many > CA certificates and we usually recommend clca for Root CA operation...yes > it is possible using OpenXPKI. Create an appropriate profile by setting the > "ca: true" flag and you can use the standard workflows to issue > certificates that qualify as CA certificates. > > Oliver > > Am 15.11.20 um 22:42 schrieb CpServiceSPb: > > Hi. > Is it possible to organize the following CAs schema using OpenXPKI: > > --------------------------------- > Root----------------------------------------------- > | > | | > intermediate1 > intermediate2 intermediate3 > | > | | > for issuing for > issuing for issuing > server1, > server2, server3 > client11, client21, > client12, client22 > client13 > and so on > > Is it possible to issue as Root as all three Intermediate CAs using > OpenXPKI WEb UI ? > Is it possible to handle request received for each Intermediate CAs and or > issue certificate using specified at request internediae CA or decline it > using Web UI ? > > > _______________________________________________ > OpenXPKI-users mailing > [email protected]https://lists.sourceforge.net/lists/listinfo/openxpki-users > > > -- > Protect your environment - close windows and adopt a penguin! > > _______________________________________________ > OpenXPKI-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/openxpki-users >
_______________________________________________ OpenXPKI-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openxpki-users
