Hi Ismo,
All you need to do is to use your TTP certificate as TLS client for the
HTTPS connection. The community edition of OpenXPKI only implements the
simple enrollment pattern and not the Full CMC variant.
Oliver
On 07.02.24 21:30, ismo.manni...@gmail.com wrote:
Hello,
I would like to use Trusted Third Party (TTP) for sending certificate
request to openxpki. The CSR is originated from other device.
Enrollmen workflow configuration has ‘authozised_signer’ with a
matching rule for TTP’s certificate, which is also used to access the
EST API.
I suppose I need to create CMS message having CSR as content which is
then signed by the TTP. I could not find any detailed openxpki
documentation about details of CMS. What options and dataformats
should be used for ‘openssl cms -sign’ ?
Thanks for any help!
Ismo
_______________________________________________
OpenXPKI-users mailing list
OpenXPKI-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openxpki-users
--
Protect your environment - close windows and adopt a penguin!
_______________________________________________
OpenXPKI-users mailing list
OpenXPKI-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openxpki-users
