Hi We are running a setup with OpenXPKI with a single Root CA (RSA private key) and a couple of intermediate/subordinate CA (all with EC private keys).
Now we have hit a problem where a 3rd party product should act as a separate CA but still we want to maintain the trust back to our root ca. This is working fine with our subordinate CA on other platforms, but this platform requires the signing key being a RSA key and not a EC key. Now I can perfectly fine create a new realm with a RSA key (tested ok) however, would it be possible to have multiple private keys on a single realm? For example that our Sub CA will sign CSRs based on a RSA private key with a RSA key and EC requests with the EC key? Thomas
_______________________________________________ OpenXPKI-users mailing list OpenXPKI-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openxpki-users
