Hi Lixin,
glad to hear you are making progress ;)
The recommended way would be to read the mail from the request at the
time of enrollment and attach it as a metadata to the certificate. I
have not tried this but you should have "SAN_EMAIL" as variable
available in the "metadata" section of the enrollment profile. If this
is not the case you need to pass it explicit inside the workflow.
best regards
Oliver
On 03.03.23 04:43, Lixin Liu wrote:
Hi,
I am very close to start open my CA implementation to our subscribers for beta testing.
One remaining issue is I am unable to setup notification correctly.
From what I see, the option provided in “info” fields are used for email notifications.
But it is not possible to do for anonymous EST/SCEP enrollments. Is it possible
to use
SAN email for notifications? We mandate all certs must include SAN email.
Also, does anyone use some types of MFA for authentication? This is a nice to have
option, not a requirement.
Thanks,
Lixin.
_______________________________________________
OpenXPKI-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openxpki-users
--
Protect your environment - close windows and adopt a penguin!
_______________________________________________
OpenXPKI-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openxpki-users
