Hi Martin
That is curious
- the profile I use is not in that list (but it works anyway, see my last mail)
- I don't use scep, but EST
- the comment says:
# Mapping of names to OpenXPKI profiles to be used with the
# Microsoft Certificate Template Name Ext. (1.3.6.1.4.1.311.20.2)Best Regards Thomas -----Original Message----- From: Martin Bartosch via OpenXPKI-users <[email protected]> Sent: Freitag, 25. August 2023 14:39 To: [email protected] Cc: Martin Bartosch <[email protected]> Subject: Re: [OpenXPKI-users] EST - invalid profile Hi Thomas, >> Hi Thomas, >> invalid profile means that the NAME of the profile that the workflow tries >> to issue does not exist or is not in the list of the allowed endpoint >> profiles. > Where to find the ‘list of the allowed endpoint profiles’? In the profile_map section Enrollment Endpoint configuration: https://github.com/openxpki/openxpki-config/blob/community/config.d/realm.tpl/scep/generic.yaml#L84 Only profiles listed in this section are accessible via this particular endpoint. The key of this map is the name requested by the client. The corresponding value is the OpenXPKI profile within this realm that will be used to issue the certificate. Cheers Martin _______________________________________________ OpenXPKI-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openxpki-users
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ OpenXPKI-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openxpki-users
