Hi Mike,
Did you have any joy with this?
I've been using my IPA PKI for our 802.1x infrastructure - which is working
nicely for the enrolled Linux hosts.
I've been considering adding some Chrome OS into the mix, but before
shelling out for some devices I've been trying to navigate both the manual
Ian Pilcher wrote:
> On 01/30/2018 02:27 PM, Rob Crittenden wrote:
>> Not sure what you mean by arbitrary. You can definitely generate a CSR
>> using your favorite tool and pass that to ipa cert-request.
>
> By arbitrary I meant a CSR/certificate that doesn't correspond to a host
> (or user) that
On 01/30/2018 02:27 PM, Rob Crittenden wrote:
Not sure what you mean by arbitrary. You can definitely generate a CSR
using your favorite tool and pass that to ipa cert-request.
By arbitrary I meant a CSR/certificate that doesn't correspond to a host
(or user) that is managed by the FreeIPA serv
Ian Pilcher via FreeIPA-users wrote:
> On 01/30/2018 09:53 AM, Rob Crittenden wrote:
>> Ian Pilcher via FreeIPA-users wrote:
>>>
>>> Jumping in to this thread ... I know how to generate a keypair and CSR,
>>> but I've never been able to figure out how to get FreeIPA to generate a
>>> certificate fr
On 01/30/2018 09:53 AM, Rob Crittenden wrote:
Ian Pilcher via FreeIPA-users wrote:
Jumping in to this thread ... I know how to generate a keypair and CSR,
but I've never been able to figure out how to get FreeIPA to generate a
certificate from a CSR.
If there's documentation somewhere that I'v
Ian Pilcher via FreeIPA-users wrote:
> On 01/29/2018 05:32 PM, Fraser Tweedale via FreeIPA-users wrote:
>> Ideally you should generate the keys and create a CSR on the device.
>> Then use IPA to issue certificates for the user.
>
> Jumping in to this thread ... I know how to generate a keypair and
On 01/29/2018 05:32 PM, Fraser Tweedale via FreeIPA-users wrote:
Ideally you should generate the keys and create a CSR on the device.
Then use IPA to issue certificates for the user.
Jumping in to this thread ... I know how to generate a keypair and CSR,
but I've never been able to figure out h
On Mon, Jan 29, 2018 at 01:34:37PM +, Mike Kelly via FreeIPA-users wrote:
> Hi,
>
> I'm looking to use FreeIPA's PKI for OpenVPN... any pointers on the right
> way to generate per-user certificates? (Looking to generate certs for
> Android and Chrome OS, so I don't have an easy way to build a