Menu
▾
▴
ejbca-develop — Development discussions
You can subscribe to this list here.
| 2001 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
(1) |
Dec
(3) |
|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 2002 |
Jan
(3) |
Feb
(2) |
Mar
(8) |
Apr
(3) |
May
(6) |
Jun
(1) |
Jul
(15) |
Aug
(6) |
Sep
|
Oct
(10) |
Nov
(2) |
Dec
(4) |
| 2003 |
Jan
(1) |
Feb
(7) |
Mar
(3) |
Apr
(6) |
May
(7) |
Jun
(5) |
Jul
(5) |
Aug
(25) |
Sep
(14) |
Oct
(2) |
Nov
|
Dec
(2) |
| 2004 |
Jan
(7) |
Feb
(4) |
Mar
(12) |
Apr
(16) |
May
(43) |
Jun
(56) |
Jul
(43) |
Aug
(40) |
Sep
(66) |
Oct
(12) |
Nov
(26) |
Dec
(10) |
| 2005 |
Jan
(13) |
Feb
(33) |
Mar
(16) |
Apr
(7) |
May
(10) |
Jun
(34) |
Jul
(41) |
Aug
(8) |
Sep
(4) |
Oct
(32) |
Nov
(20) |
Dec
(25) |
| 2006 |
Jan
(30) |
Feb
(101) |
Mar
(5) |
Apr
(75) |
May
(74) |
Jun
(22) |
Jul
(6) |
Aug
(70) |
Sep
(19) |
Oct
(21) |
Nov
(31) |
Dec
(50) |
| 2007 |
Jan
(15) |
Feb
(20) |
Mar
(24) |
Apr
(33) |
May
(13) |
Jun
(18) |
Jul
(13) |
Aug
(7) |
Sep
(63) |
Oct
(68) |
Nov
(29) |
Dec
(68) |
| 2008 |
Jan
(30) |
Feb
(33) |
Mar
(30) |
Apr
(103) |
May
(78) |
Jun
(48) |
Jul
(72) |
Aug
(24) |
Sep
(62) |
Oct
(63) |
Nov
(70) |
Dec
(37) |
| 2009 |
Jan
(34) |
Feb
(35) |
Mar
(64) |
Apr
(34) |
May
(34) |
Jun
(58) |
Jul
(30) |
Aug
(30) |
Sep
(46) |
Oct
(52) |
Nov
(12) |
Dec
(23) |
| 2010 |
Jan
(121) |
Feb
(18) |
Mar
(53) |
Apr
(62) |
May
(62) |
Jun
(20) |
Jul
(33) |
Aug
(20) |
Sep
(36) |
Oct
(35) |
Nov
(44) |
Dec
(63) |
| 2011 |
Jan
(19) |
Feb
(32) |
Mar
(94) |
Apr
(41) |
May
(47) |
Jun
(25) |
Jul
(34) |
Aug
(20) |
Sep
(9) |
Oct
(41) |
Nov
(33) |
Dec
(24) |
| 2012 |
Jan
(12) |
Feb
(36) |
Mar
(48) |
Apr
(32) |
May
(20) |
Jun
(15) |
Jul
(32) |
Aug
(13) |
Sep
(33) |
Oct
(54) |
Nov
(25) |
Dec
(16) |
| 2013 |
Jan
(45) |
Feb
(39) |
Mar
(38) |
Apr
(50) |
May
(29) |
Jun
(30) |
Jul
(33) |
Aug
(12) |
Sep
(9) |
Oct
(25) |
Nov
(29) |
Dec
(20) |
| 2014 |
Jan
(25) |
Feb
(19) |
Mar
(16) |
Apr
(33) |
May
(27) |
Jun
(37) |
Jul
(29) |
Aug
(27) |
Sep
(37) |
Oct
(58) |
Nov
(109) |
Dec
(26) |
| 2015 |
Jan
(4) |
Feb
(35) |
Mar
(22) |
Apr
(35) |
May
(28) |
Jun
(20) |
Jul
(4) |
Aug
(16) |
Sep
(37) |
Oct
(13) |
Nov
(13) |
Dec
(14) |
| 2016 |
Jan
(22) |
Feb
(7) |
Mar
(23) |
Apr
(30) |
May
(10) |
Jun
(10) |
Jul
(15) |
Aug
(12) |
Sep
(22) |
Oct
(31) |
Nov
(5) |
Dec
(5) |
| 2017 |
Jan
(30) |
Feb
(25) |
Mar
(28) |
Apr
(4) |
May
(19) |
Jun
(13) |
Jul
(7) |
Aug
(1) |
Sep
(2) |
Oct
(5) |
Nov
(12) |
Dec
(2) |
| 2018 |
Jan
(7) |
Feb
|
Mar
(7) |
Apr
(2) |
May
(8) |
Jun
(18) |
Jul
(6) |
Aug
(3) |
Sep
(15) |
Oct
(33) |
Nov
(13) |
Dec
(7) |
| 2019 |
Jan
(5) |
Feb
(7) |
Mar
(30) |
Apr
(5) |
May
(4) |
Jun
(69) |
Jul
(86) |
Aug
(22) |
Sep
(6) |
Oct
(7) |
Nov
(5) |
Dec
(3) |
| 2020 |
Jan
(10) |
Feb
(12) |
Mar
(22) |
Apr
(5) |
May
(1) |
Jun
(4) |
Jul
(6) |
Aug
|
Sep
(9) |
Oct
|
Nov
|
Dec
(1) |
| 2021 |
Jan
(4) |
Feb
(11) |
Mar
(7) |
Apr
(7) |
May
|
Jun
(3) |
Jul
(10) |
Aug
(6) |
Sep
|
Oct
|
Nov
(18) |
Dec
(2) |
| 2022 |
Jan
(1) |
Feb
(1) |
Mar
|
Apr
|
May
|
Jun
(2) |
Jul
|
Aug
(4) |
Sep
|
Oct
|
Nov
|
Dec
|
| 2023 |
Jan
|
Feb
|
Mar
|
Apr
(1) |
May
(1) |
Jun
|
Jul
|
Aug
(5) |
Sep
|
Oct
|
Nov
|
Dec
|
|
From: Pallavidino L. <luc...@gm...> - 2012-09-10 14:41:13
|
Hello,
I try to use EJBCA web service to add a new End entity. But when I want
to add a new user with my own authority and my own end entity profile, I
get this error :
Exception in thread "main"
org.ejbca.core.protocol.ws.client.gen.UserDoesntFullfillEndEntityProfile_Exception:
Issuance revocation reason 'null' does not match required value '-1'.
I don't know what is the problem. May you help me please ?
This is my code :
CertTools.installBCProviderIfNotAvailable();
String urlstr = "https://localhost:8443/ejbca/ejbcaws/ejbcaws?wsdl";
System.setProperty("javax.net.ssl.trustStore","p12/cacerts.jks");
System.setProperty("javax.net.ssl.trustStorePassword","changeit");
System.setProperty("javax.net.ssl.keyStoreType", "pkcs12");
System.setProperty("javax.net.ssl.keyStore","p12/testKs.p12");
System.setProperty("javax.net.ssl.keyStorePassword","PASSWORDP12");
QName qname = new QName("http://ws.protocol.core.ejbca.org/";,
"EjbcaWSService");
EjbcaWSService service = new EjbcaWSService(new URL(urlstr),qname);
EjbcaWS ejbcaraws = service.getEjbcaWSPort();
UserDataVOWS user1 = new UserDataVOWS();
user1.setUsername("WSTESTUSER25");
user1.setPassword("foo12345");
user1.setClearPwd(true);
user1.setEmail(null);
user1.setSubjectDN("CN=WSTESTUSER25,OU=Test,O=ACME,L=CAEN,ST=Calvados,C=FR");
user1.setCaName("ACME SIGN CA");
user1.setSubjectAltName(null);
user1.setStatus(UserDataVOWS.STATUS_NEW);
user1.setTokenType("USERGENERATED");
user1.setEndEntityProfileName("ACME SIGNATURE ENTITY PROFILE");
user1.setCertificateProfileName("ACME SIGNATURE CERTIFICATE PROFILE");
ejbcaraws.editUser(user1);
Thank you for your help.
--
Pallavidino Luc Ingénieur en monétique et sécurité des systèmes
Tél. : +33-6-8070-3133 Mail : luc...@yo...
|
|
From: Andreas B. <ab...@an...> - 2012-09-06 08:18:10
|
Seems, like the automatic upgrade made Bürki. Had to change/reenter correct name on ConfigurePortalPages -> EditPortalPage Now it's fine Cheeers, Andreas Am 06.09.2012 09:47, schrieb Tomas Gustavsson: > > Haha, for me it only says "Dashboard" plain and simple. Have you looked > in the configuration of "your dashboards". Perhaps it is something there > that Jira was not able to upgrade? (some bug in their upgrade process > perhaps). > > /Tomas > > On 09/06/2012 09:35 AM, Andreas Bürki wrote: >> See screen-shoot... >> >> No idea, what's the reason for >> >> >> Cheeers, Andreas >> >> Am 06.09.2012 09:18, schrieb Tomas Gustavsson: >>> >>> I did everything in the Jira book for UTF8 support. For me it seems to >>> work though. I can add comments with åäö, when I list users names are >>> correct with åäö and even Andreas Bürki shows correctly, and the page is >>> encoded in UTF-8 when I check firefox view->character encoding. >>> >>> My dashboard does not display my own name however... >>> >>> Cheers, >>> Tomas >>> >>> On 09/05/2012 10:55 PM, Andreas Bürki wrote: >>>> Hi Tomas >>>> >>>> Thx for your efforts :-) >>>> >>>> Would be nice, if jira would handle UTF-8 (guess, that's the thing for >>>> ü,ä,é etc. - > click __Dashboards__ -> shows: __Dashboard for Andreas >>>> Bürki__ ) >>>> >>>> >>>> Cheeers, Andreas >>>> >>>> >>>> >>>> Am 05.09.2012 21:18, schrieb Tomas Gustavsson: >>>>> >>>>> Hi, >>>>> >>>>> We have upgraded the Jira for EJBCA and SignServer,at >>>>> https://jira.primekey.se/, to the latest version of Jira 5. >>>>> >>>>> It's quite different from Jira 3, so go play :-) >>>>> >>>>> Cheers, >>>>> Tomas >>>>> >>>>> ------------------------------------------------------------------------------ >>>>> Live Security Virtual Conference >>>>> Exclusive live event will cover all the ways today's security and >>>>> threat landscape has changed and how IT managers can respond. Discussions >>>>> will include endpoint security, mobile security and the latest in malware >>>>> threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ >>>>> _______________________________________________ >>>>> Ejbca-develop mailing list >>>>> Ejb...@li... >>>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop >>>> >>>> >>>> >>>> ------------------------------------------------------------------------------ >>>> Live Security Virtual Conference >>>> Exclusive live event will cover all the ways today's security and >>>> threat landscape has changed and how IT managers can respond. Discussions >>>> will include endpoint security, mobile security and the latest in malware >>>> threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ >>>> >>>> >>>> >>>> _______________________________________________ >>>> Ejbca-develop mailing list >>>> Ejb...@li... >>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop >>>> >>> >>> >>> ------------------------------------------------------------------------------ >>> Live Security Virtual Conference >>> Exclusive live event will cover all the ways today's security and >>> threat landscape has changed and how IT managers can respond. Discussions >>> will include endpoint security, mobile security and the latest in malware >>> threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ >>> _______________________________________________ >>> Ejbca-develop mailing list >>> Ejb...@li... >>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop >> >> >> >> ------------------------------------------------------------------------------ >> Live Security Virtual Conference >> Exclusive live event will cover all the ways today's security and >> threat landscape has changed and how IT managers can respond. Discussions >> will include endpoint security, mobile security and the latest in malware >> threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ >> >> >> >> _______________________________________________ >> Ejbca-develop mailing list >> Ejb...@li... >> https://lists.sourceforge.net/lists/listinfo/ejbca-develop >> > > > ------------------------------------------------------------------------------ > Live Security Virtual Conference > Exclusive live event will cover all the ways today's security and > threat landscape has changed and how IT managers can respond. Discussions > will include endpoint security, mobile security and the latest in malware > threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ > _______________________________________________ > Ejbca-develop mailing list > Ejb...@li... > https://lists.sourceforge.net/lists/listinfo/ejbca-develop -- Andreas Bürki E-Mail: ab...@an... Zertifikat - SHA1-Fingerprint: 54:99:02:5F:60:CE:7A:27:0E:73:79:24:CA:C7:A0:CC:60:39:05:9F |
|
From: Tomas G. <to...@pr...> - 2012-09-06 07:48:12
|
Haha, for me it only says "Dashboard" plain and simple. Have you looked in the configuration of "your dashboards". Perhaps it is something there that Jira was not able to upgrade? (some bug in their upgrade process perhaps). /Tomas On 09/06/2012 09:35 AM, Andreas Bürki wrote: > See screen-shoot... > > No idea, what's the reason for > > > Cheeers, Andreas > > Am 06.09.2012 09:18, schrieb Tomas Gustavsson: >> >> I did everything in the Jira book for UTF8 support. For me it seems to >> work though. I can add comments with åäö, when I list users names are >> correct with åäö and even Andreas Bürki shows correctly, and the page is >> encoded in UTF-8 when I check firefox view->character encoding. >> >> My dashboard does not display my own name however... >> >> Cheers, >> Tomas >> >> On 09/05/2012 10:55 PM, Andreas Bürki wrote: >>> Hi Tomas >>> >>> Thx for your efforts :-) >>> >>> Would be nice, if jira would handle UTF-8 (guess, that's the thing for >>> ü,ä,é etc. - > click __Dashboards__ -> shows: __Dashboard for Andreas >>> Bürki__ ) >>> >>> >>> Cheeers, Andreas >>> >>> >>> >>> Am 05.09.2012 21:18, schrieb Tomas Gustavsson: >>>> >>>> Hi, >>>> >>>> We have upgraded the Jira for EJBCA and SignServer,at >>>> https://jira.primekey.se/, to the latest version of Jira 5. >>>> >>>> It's quite different from Jira 3, so go play :-) >>>> >>>> Cheers, >>>> Tomas >>>> >>>> ------------------------------------------------------------------------------ >>>> Live Security Virtual Conference >>>> Exclusive live event will cover all the ways today's security and >>>> threat landscape has changed and how IT managers can respond. Discussions >>>> will include endpoint security, mobile security and the latest in malware >>>> threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ >>>> _______________________________________________ >>>> Ejbca-develop mailing list >>>> Ejb...@li... >>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop >>> >>> >>> >>> ------------------------------------------------------------------------------ >>> Live Security Virtual Conference >>> Exclusive live event will cover all the ways today's security and >>> threat landscape has changed and how IT managers can respond. Discussions >>> will include endpoint security, mobile security and the latest in malware >>> threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ >>> >>> >>> >>> _______________________________________________ >>> Ejbca-develop mailing list >>> Ejb...@li... >>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop >>> >> >> >> ------------------------------------------------------------------------------ >> Live Security Virtual Conference >> Exclusive live event will cover all the ways today's security and >> threat landscape has changed and how IT managers can respond. Discussions >> will include endpoint security, mobile security and the latest in malware >> threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ >> _______________________________________________ >> Ejbca-develop mailing list >> Ejb...@li... >> https://lists.sourceforge.net/lists/listinfo/ejbca-develop > > > > ------------------------------------------------------------------------------ > Live Security Virtual Conference > Exclusive live event will cover all the ways today's security and > threat landscape has changed and how IT managers can respond. Discussions > will include endpoint security, mobile security and the latest in malware > threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ > > > > _______________________________________________ > Ejbca-develop mailing list > Ejb...@li... > https://lists.sourceforge.net/lists/listinfo/ejbca-develop > |
|
From: Andreas B. <ab...@an...> - 2012-09-06 07:36:22
|
See screen-shoot... No idea, what's the reason for Cheeers, Andreas Am 06.09.2012 09:18, schrieb Tomas Gustavsson: > > I did everything in the Jira book for UTF8 support. For me it seems to > work though. I can add comments with åäö, when I list users names are > correct with åäö and even Andreas Bürki shows correctly, and the page is > encoded in UTF-8 when I check firefox view->character encoding. > > My dashboard does not display my own name however... > > Cheers, > Tomas > > On 09/05/2012 10:55 PM, Andreas Bürki wrote: >> Hi Tomas >> >> Thx for your efforts :-) >> >> Would be nice, if jira would handle UTF-8 (guess, that's the thing for >> ü,ä,é etc. - > click __Dashboards__ -> shows: __Dashboard for Andreas >> Bürki__ ) >> >> >> Cheeers, Andreas >> >> >> >> Am 05.09.2012 21:18, schrieb Tomas Gustavsson: >>> >>> Hi, >>> >>> We have upgraded the Jira for EJBCA and SignServer,at >>> https://jira.primekey.se/, to the latest version of Jira 5. >>> >>> It's quite different from Jira 3, so go play :-) >>> >>> Cheers, >>> Tomas >>> >>> ------------------------------------------------------------------------------ >>> Live Security Virtual Conference >>> Exclusive live event will cover all the ways today's security and >>> threat landscape has changed and how IT managers can respond. Discussions >>> will include endpoint security, mobile security and the latest in malware >>> threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ >>> _______________________________________________ >>> Ejbca-develop mailing list >>> Ejb...@li... >>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop >> >> >> >> ------------------------------------------------------------------------------ >> Live Security Virtual Conference >> Exclusive live event will cover all the ways today's security and >> threat landscape has changed and how IT managers can respond. Discussions >> will include endpoint security, mobile security and the latest in malware >> threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ >> >> >> >> _______________________________________________ >> Ejbca-develop mailing list >> Ejb...@li... >> https://lists.sourceforge.net/lists/listinfo/ejbca-develop >> > > > ------------------------------------------------------------------------------ > Live Security Virtual Conference > Exclusive live event will cover all the ways today's security and > threat landscape has changed and how IT managers can respond. Discussions > will include endpoint security, mobile security and the latest in malware > threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ > _______________________________________________ > Ejbca-develop mailing list > Ejb...@li... > https://lists.sourceforge.net/lists/listinfo/ejbca-develop -- Andreas Bürki E-Mail: ab...@an... Zertifikat - SHA1-Fingerprint: 54:99:02:5F:60:CE:7A:27:0E:73:79:24:CA:C7:A0:CC:60:39:05:9F |
|
From: Tomas G. <to...@pr...> - 2012-09-06 07:18:20
|
I did everything in the Jira book for UTF8 support. For me it seems to work though. I can add comments with åäö, when I list users names are correct with åäö and even Andreas Bürki shows correctly, and the page is encoded in UTF-8 when I check firefox view->character encoding. My dashboard does not display my own name however... Cheers, Tomas On 09/05/2012 10:55 PM, Andreas Bürki wrote: > Hi Tomas > > Thx for your efforts :-) > > Would be nice, if jira would handle UTF-8 (guess, that's the thing for > ü,ä,é etc. - > click __Dashboards__ -> shows: __Dashboard for Andreas > Bürki__ ) > > > Cheeers, Andreas > > > > Am 05.09.2012 21:18, schrieb Tomas Gustavsson: >> >> Hi, >> >> We have upgraded the Jira for EJBCA and SignServer,at >> https://jira.primekey.se/, to the latest version of Jira 5. >> >> It's quite different from Jira 3, so go play :-) >> >> Cheers, >> Tomas >> >> ------------------------------------------------------------------------------ >> Live Security Virtual Conference >> Exclusive live event will cover all the ways today's security and >> threat landscape has changed and how IT managers can respond. Discussions >> will include endpoint security, mobile security and the latest in malware >> threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ >> _______________________________________________ >> Ejbca-develop mailing list >> Ejb...@li... >> https://lists.sourceforge.net/lists/listinfo/ejbca-develop > > > > ------------------------------------------------------------------------------ > Live Security Virtual Conference > Exclusive live event will cover all the ways today's security and > threat landscape has changed and how IT managers can respond. Discussions > will include endpoint security, mobile security and the latest in malware > threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ > > > > _______________________________________________ > Ejbca-develop mailing list > Ejb...@li... > https://lists.sourceforge.net/lists/listinfo/ejbca-develop > |
|
From: ejbca-support <ejb...@pr...> - 2012-09-06 06:33:16
|
On 2012-09-06 06:58, Julien PASQUIER wrote: Hi Julien, > I would like to get directly the PKCS#7 file containing the CA chain from an EJBCA URL like this: > https://.../ejbca/publicweb/webdist/certdist?cmd=cachain&caid=-1822512352&format=*pkcs7* > > Is it possible to add this new functionnality in a next release of EJBCA? It definitely is but I would rather recommend you (and EJBCA dev) using OpenSSL and expose the PKCS #7 blob on a *public* web server as a static file. Regards, Anders tech support > > Regards, > Julien > > Le 05/09/2012 14:56, ejbca-support a écrit : >> On 2012-09-05 11:09, Julien PASQUIER wrote: >>> Hello, >>> >>> I would like to specify in the AIA (Authority Information Access) extension of an end entity certificate the URL of a PKCS#7 file containing CA certificates (issuer of the end entity and parent's certificates up to the root CA). It seems to be that EJBCA is able to get CA certificates in PEM but not in PKCS#7 "certs-only" which is required by the RFC 5280 (page 49): >>> >>> Where the information is available via HTTP or FTP, accessLocation >>> MUST be a uniformResourceIdentifier and the URI MUST point to either >>> a single DER encoded certificate as specified in [RFC2585] or a >>> collection of certificates in a BER or DER encoded "certs-only" CMS >>> message as specified in [RFC2797]. >>> >>> How can I get CA certificates in CMS/PKCS#7 "certs-only" from EJBCA ? >> I don't know either but OpenSSL seems to be what you are looking for: >> >> http://langui.sh/2009/03/20/creating-a-pkcs7-p7b-using-openssl >> >> Cheers, >> Anders >> tech support >> >>> Regards, >>> Julien >>> >>> >>> ------------------------------------------------------------------------------ >>> Live Security Virtual Conference >>> Exclusive live event will cover all the ways today's security and >>> threat landscape has changed and how IT managers can respond. Discussions >>> will include endpoint security, mobile security and the latest in malware >>> threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ >>> >>> >>> >>> _______________________________________________ >>> Ejbca-develop mailing list >>> Ejb...@li... >>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop >>> >> > > > > ------------------------------------------------------------------------------ > Live Security Virtual Conference > Exclusive live event will cover all the ways today's security and > threat landscape has changed and how IT managers can respond. Discussions > will include endpoint security, mobile security and the latest in malware > threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ > > > > _______________________________________________ > Ejbca-develop mailing list > Ejb...@li... > https://lists.sourceforge.net/lists/listinfo/ejbca-develop > |
|
From: Julien P. <jul...@fr...> - 2012-09-06 04:59:11
|
I would like to get directly the PKCS#7 file containing the CA chain from an EJBCA URL like this: https://.../ejbca/publicweb/webdist/certdist?cmd=cachain&caid=-1822512352&format=*pkcs7* Is it possible to add this new functionnality in a next release of EJBCA? Regards, Julien Le 05/09/2012 14:56, ejbca-support a écrit : > On 2012-09-05 11:09, Julien PASQUIER wrote: >> Hello, >> >> I would like to specify in the AIA (Authority Information Access) extension of an end entity certificate the URL of a PKCS#7 file containing CA certificates (issuer of the end entity and parent's certificates up to the root CA). It seems to be that EJBCA is able to get CA certificates in PEM but not in PKCS#7 "certs-only" which is required by the RFC 5280 (page 49): >> >> Where the information is available via HTTP or FTP, accessLocation >> MUST be a uniformResourceIdentifier and the URI MUST point to either >> a single DER encoded certificate as specified in [RFC2585] or a >> collection of certificates in a BER or DER encoded "certs-only" CMS >> message as specified in [RFC2797]. >> >> How can I get CA certificates in CMS/PKCS#7 "certs-only" from EJBCA ? > I don't know either but OpenSSL seems to be what you are looking for: > > http://langui.sh/2009/03/20/creating-a-pkcs7-p7b-using-openssl > > Cheers, > Anders > tech support > >> Regards, >> Julien >> >> >> ------------------------------------------------------------------------------ >> Live Security Virtual Conference >> Exclusive live event will cover all the ways today's security and >> threat landscape has changed and how IT managers can respond. Discussions >> will include endpoint security, mobile security and the latest in malware >> threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ >> >> >> >> _______________________________________________ >> Ejbca-develop mailing list >> Ejb...@li... >> https://lists.sourceforge.net/lists/listinfo/ejbca-develop >> > |
|
From: Andreas B. <ab...@an...> - 2012-09-05 21:34:26
|
Hi Tomas Thx for your efforts :-) Would be nice, if jira would handle UTF-8 (guess, that's the thing for ü,ä,é etc. - > click __Dashboards__ -> shows: __Dashboard for Andreas Bürki__ ) Cheeers, Andreas Am 05.09.2012 21:18, schrieb Tomas Gustavsson: > > Hi, > > We have upgraded the Jira for EJBCA and SignServer,at > https://jira.primekey.se/, to the latest version of Jira 5. > > It's quite different from Jira 3, so go play :-) > > Cheers, > Tomas > > ------------------------------------------------------------------------------ > Live Security Virtual Conference > Exclusive live event will cover all the ways today's security and > threat landscape has changed and how IT managers can respond. Discussions > will include endpoint security, mobile security and the latest in malware > threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ > _______________________________________________ > Ejbca-develop mailing list > Ejb...@li... > https://lists.sourceforge.net/lists/listinfo/ejbca-develop -- Andreas Bürki E-Mail: ab...@an... Zertifikat - SHA1-Fingerprint: 54:99:02:5F:60:CE:7A:27:0E:73:79:24:CA:C7:A0:CC:60:39:05:9F |
|
From: Tomas G. <to...@pr...> - 2012-09-05 19:18:47
|
Hi, We have upgraded the Jira for EJBCA and SignServer,at https://jira.primekey.se/, to the latest version of Jira 5. It's quite different from Jira 3, so go play :-) Cheers, Tomas |
|
From: ejbca-support <ejb...@pr...> - 2012-09-05 12:57:11
|
On 2012-09-05 11:09, Julien PASQUIER wrote: > Hello, > > I would like to specify in the AIA (Authority Information Access) extension of an end entity certificate the URL of a PKCS#7 file containing CA certificates (issuer of the end entity and parent's certificates up to the root CA). It seems to be that EJBCA is able to get CA certificates in PEM but not in PKCS#7 "certs-only" which is required by the RFC 5280 (page 49): > > Where the information is available via HTTP or FTP, accessLocation > MUST be a uniformResourceIdentifier and the URI MUST point to either > a single DER encoded certificate as specified in [RFC2585] or a > collection of certificates in a BER or DER encoded "certs-only" CMS > message as specified in [RFC2797]. > > How can I get CA certificates in CMS/PKCS#7 "certs-only" from EJBCA ? I don't know either but OpenSSL seems to be what you are looking for: http://langui.sh/2009/03/20/creating-a-pkcs7-p7b-using-openssl Cheers, Anders tech support > > Regards, > Julien > > > ------------------------------------------------------------------------------ > Live Security Virtual Conference > Exclusive live event will cover all the ways today's security and > threat landscape has changed and how IT managers can respond. Discussions > will include endpoint security, mobile security and the latest in malware > threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ > > > > _______________________________________________ > Ejbca-develop mailing list > Ejb...@li... > https://lists.sourceforge.net/lists/listinfo/ejbca-develop > |
|
From: Julien P. <jul...@fr...> - 2012-09-05 09:10:09
|
Hello,
I would like to specify in the AIA (Authority Information Access)
extension of an end entity certificate the URL of a PKCS#7 file
containing CA certificates (issuer of the end entity and parent's
certificates up to the root CA). It seems to be that EJBCA is able to
get CA certificates in PEM but not in PKCS#7 "certs-only" which is
required by the RFC 5280 (page 49):
Where the information is available via HTTP or FTP, accessLocation
MUST be a uniformResourceIdentifier and the URI MUST point to either
a single DER encoded certificate as specified in [RFC2585] or a
collection of certificates in a BER or DER encoded "certs-only" CMS
message as specified in [RFC2797].
How can I get CA certificates in CMS/PKCS#7 "certs-only" from EJBCA ?
Regards,
Julien
|
|
From: Tomas G. <to...@pr...> - 2012-09-05 08:51:56
|
Hi Richard, It is correct that any p12 file is not sent to publishers. p12 files are generated in outer, more client phasing layers of the CA. Getting that into publishers will not be easy. Perhaps alternative, add-on, approaches should be looked at for p12 files. I.e. publishing everything except the p12, and making an integration component that adds the p12, wherever/whenever that is generated. For 3, I don't really know. Did you have "clear text password" enabled for user. Otherwise publisher will not have access to the password. Regards, Tomas ----- PrimeKey Solutions offers commercial EJBCA and SignServer support subscriptions and training courses. Please see www.primekey.se or contact in...@pr... for more information. http://www.primekey.se/Services/Support/ http://www.primekey.se/Services/Training/ On 09/04/2012 02:07 AM, Richard Braman wrote: > PS. I did find out that the answer to question 1 and 2 is to modify the > ejbca_4_0_10/src/java/org/ejbca/core/model/ca/publisher/LdapPublisher.java > class to add the functions I want. Is there any guidance the dev team > can give me on what variable the p12 cert is going to be in? I already > reviewed the code in this file and it appears that I need to add my > attributes to the methods. > > On Mon, Sep 3, 2012 at 6:53 PM, Richard Braman <ehr...@gm... > <mailto:ehr...@gm...>> wrote: > > HI, I am a newbie to EJBCA but I have been able to setup a test CA > using latest EJBCA deployed on Ubuntu/Glassfish 2.1/MySQL. Many > thanks for the excellent product and instructions. I was also able > to configure publishing of new user data, plus the users cert > (public) to my OpenSSO based LDAP directory. I do have 3 questions: > > 1. I would like to publish the .p12 file (including the private > key) for the user to the LDAP attribute userPKCS12. Is this > possible without modification to the codebase? > > 2. I have a list of about 10 or so attributes in my LDAP that I > would like to publish out of the CA (I use the iPlanet Object > classes as well as Health Care Provider Directory classes defined by > IHE International. > > 3. I did not see that userPassword was published, even though I > check the box. > > Thanks in advance for the help. > > RIchard Braman > > > > > ------------------------------------------------------------------------------ > Live Security Virtual Conference > Exclusive live event will cover all the ways today's security and > threat landscape has changed and how IT managers can respond. Discussions > will include endpoint security, mobile security and the latest in malware > threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ > > > > _______________________________________________ > Ejbca-develop mailing list > Ejb...@li... > https://lists.sourceforge.net/lists/listinfo/ejbca-develop > |
|
From: Richard B. <rb...@eh...> - 2012-09-04 00:07:49
|
PS. I did find out that the answer to question 1 and 2 is to modify the ejbca_4_0_10/src/java/org/ejbca/core/model/ca/publisher/LdapPublisher.java class to add the functions I want. Is there any guidance the dev team can give me on what variable the p12 cert is going to be in? I already reviewed the code in this file and it appears that I need to add my attributes to the methods. On Mon, Sep 3, 2012 at 6:53 PM, Richard Braman <ehr...@gm...> wrote: > HI, I am a newbie to EJBCA but I have been able to setup a test CA using > latest EJBCA deployed on Ubuntu/Glassfish 2.1/MySQL. Many thanks for the > excellent product and instructions. I was also able to configure > publishing of new user data, plus the users cert (public) to my OpenSSO > based LDAP directory. I do have 3 questions: > > 1. I would like to publish the .p12 file (including the private key) for > the user to the LDAP attribute userPKCS12. Is this possible without > modification to the codebase? > > 2. I have a list of about 10 or so attributes in my LDAP that I would > like to publish out of the CA (I use the iPlanet Object classes as well as > Health Care Provider Directory classes defined by IHE International. > > 3. I did not see that userPassword was published, even though I check the > box. > > Thanks in advance for the help. > > RIchard Braman > |
|
From: Richard B. <ehr...@gm...> - 2012-09-03 22:53:09
|
HI, I am a newbie to EJBCA but I have been able to setup a test CA using latest EJBCA deployed on Ubuntu/Glassfish 2.1/MySQL. Many thanks for the excellent product and instructions. I was also able to configure publishing of new user data, plus the users cert (public) to my OpenSSO based LDAP directory. I do have 3 questions: 1. I would like to publish the .p12 file (including the private key) for the user to the LDAP attribute userPKCS12. Is this possible without modification to the codebase? 2. I have a list of about 10 or so attributes in my LDAP that I would like to publish out of the CA (I use the iPlanet Object classes as well as Health Care Provider Directory classes defined by IHE International. 3. I did not see that userPassword was published, even though I check the box. Thanks in advance for the help. RIchard Braman |
|
From: Nikolai S. <nik...@gm...> - 2012-08-28 10:32:01
|
Dear All, I'm looking for proposition is it possible to use EJBCA to store the CA keys in a Trusted Platform Module (TPM) instead of HSM. Regards, Niki |
|
From: Nikolai S. <nik...@gm...> - 2012-08-28 09:54:49
|
Dear All, I'm looking for proposition is it possible to use EJBCA to store the CA keys in a Trusted Platform Module (TPM) instead of HSM. Regards, Niki |
|
From: Tomas G. <to...@pr...> - 2012-08-28 05:30:19
|
Hi, If you are not using the protection, i.e. the columns are empty you can safely shortcut usage of b64Protection. This does not exist anymore in recent releases of EJBCA, so there is nothing for the project to do. Cheers, Tomas ----- PrimeKey Solutions offers commercial EJBCA and SignServer support subscriptions and training courses. Please see www.primekey.se or contact in...@pr... for more information. http://www.primekey.se/Services/Support/ http://www.primekey.se/Services/Training/ On 08/27/2012 09:47 PM, MacDonald, Nick (Nick) wrote: > I have finally tracked down the problem I have been chasing, and while I > understand the problem, I still don’t really understand the root cause. > > I’m working with an old version of the code… it appears to be a > non-release version, i.e. a checkout of a pre 3.6.0 release. > > It has been working fine for some time, but something seems to have > changed to force the code to call the getProtection() method in > ProtectedLogDataBean. In my database there is never any data in the > b64Protection field, and the version of the method that I have doesn’t > check for this, and passes the empty string to Base64.decode() which > causes an array index exception (-4). > > I’m wondering if someone can explain to me what sort of a change might > cause the behavior change. It doesn’t seem to hurt anything if I update > the method to check for the empty string (as shown below), but I wanted > a second opinion on whether this might be having consequences I am not > aware of. > > public byte[] getProtection() > > { > > String b64Protection = getB64Protection(); > > if (b64Protection != null) > > { > > if (b64Protection.equals("")) > > { > > return new byte[0]; > > } > > return Base64.decode(b64Protection.getBytes()); > > } > > return null; > > } > > > > ------------------------------------------------------------------------------ > Live Security Virtual Conference > Exclusive live event will cover all the ways today's security and > threat landscape has changed and how IT managers can respond. Discussions > will include endpoint security, mobile security and the latest in malware > threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ > > > > _______________________________________________ > Ejbca-develop mailing list > Ejb...@li... > https://lists.sourceforge.net/lists/listinfo/ejbca-develop > |
|
From: MacDonald, N. (Nick) <nma...@av...> - 2012-08-27 20:22:17
|
I have finally tracked down the problem I have been chasing, and while I understand the problem, I still don't really understand the root cause.
I'm working with an old version of the code... it appears to be a non-release version, i.e. a checkout of a pre 3.6.0 release.
It has been working fine for some time, but something seems to have changed to force the code to call the getProtection() method in ProtectedLogDataBean. In my database there is never any data in the b64Protection field, and the version of the method that I have doesn't check for this, and passes the empty string to Base64.decode() which causes an array index exception (-4).
I'm wondering if someone can explain to me what sort of a change might cause the behavior change. It doesn't seem to hurt anything if I update the method to check for the empty string (as shown below), but I wanted a second opinion on whether this might be having consequences I am not aware of.
public byte[] getProtection()
{
String b64Protection = getB64Protection();
if (b64Protection != null)
{
if (b64Protection.equals(""))
{
return new byte[0];
}
return Base64.decode(b64Protection.getBytes());
}
return null;
}
|
|
From: Tomas G. <to...@pr...> - 2012-08-23 16:30:49
|
Simple, the code you found is not related to certificate serial number generation when issuing certificates using EJBCA. Regards, Tomas ----- PrimeKey Solutions offers commercial EJBCA and SignServer support subscriptions and training courses. Please see www.primekey.se or contact in...@pr... for more information. http://www.primekey.se/Services/Support/ http://www.primekey.se/Services/Training/ On 08/23/2012 06:26 PM, MacDonald, Nick (Nick) wrote: > Hello: > > I am trying to track down an issue, and it has caused me to stray into > the EJBCA serial number code. I saw the notes in the > SernoGenerator.java about the restrictions on serial numbers, then I ran > across this code in ejbca_4_0_12\src\java\org\ejbca\util\CertTools.java > > byte[] serno = new byte[8]; > > SecureRandom random = SecureRandom.getInstance("SHA1PRNG"); > > random.setSeed(new Date().getTime()); > > random.nextBytes(serno); > > certgen.setSerialNumber(new java.math.BigInteger(serno).abs()); > > which is not technically following the rules. I was wondering if this > should be a call to use the SernoGenerator ? > > Also wondering about this method in > ejbca_4_0_12\modules\ejbca-xkms-cli\src\org\ejbca\core\protocol\xkms\client\XKMSCLIBaseCommand.java > > protected String genId() throws NoSuchAlgorithmException { > > BigInteger serno = null; > > Random random = SecureRandom.getInstance("SHA1PRNG"); > > long seed = Math.abs((new Date().getTime()) + this.hashCode()); > > random.setSeed(seed); > > try { > > byte[] sernobytes = new byte[8]; > > random.nextBytes(sernobytes); > > serno = (new > java.math.BigInteger(sernobytes)).abs(); > > } catch (Exception e) { > > > getPrintStream().println("Error generating response ID " ); > > } > > return "_" + serno.toString(); > > } > > > > ------------------------------------------------------------------------------ > Live Security Virtual Conference > Exclusive live event will cover all the ways today's security and > threat landscape has changed and how IT managers can respond. Discussions > will include endpoint security, mobile security and the latest in malware > threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ > > > > _______________________________________________ > Ejbca-develop mailing list > Ejb...@li... > https://lists.sourceforge.net/lists/listinfo/ejbca-develop > |
|
From: MacDonald, N. (Nick) <nma...@av...> - 2012-08-23 16:27:12
|
Hello:
I am trying to track down an issue, and it has caused me to stray into the EJBCA serial number code. I saw the notes in the SernoGenerator.java about the restrictions on serial numbers, then I ran across this code in ejbca_4_0_12\src\java\org\ejbca\util\CertTools.java
byte[] serno = new byte[8];
SecureRandom random = SecureRandom.getInstance("SHA1PRNG");
random.setSeed(new Date().getTime());
random.nextBytes(serno);
certgen.setSerialNumber(new java.math.BigInteger(serno).abs());
which is not technically following the rules. I was wondering if this should be a call to use the SernoGenerator ?
Also wondering about this method in ejbca_4_0_12\modules\ejbca-xkms-cli\src\org\ejbca\core\protocol\xkms\client\XKMSCLIBaseCommand.java
protected String genId() throws NoSuchAlgorithmException {
BigInteger serno = null;
Random random = SecureRandom.getInstance("SHA1PRNG");
long seed = Math.abs((new Date().getTime()) + this.hashCode());
random.setSeed(seed);
try {
byte[] sernobytes = new byte[8];
random.nextBytes(sernobytes);
serno = (new java.math.BigInteger(sernobytes)).abs();
} catch (Exception e) {
getPrintStream().println("Error generating response ID " );
}
return "_" + serno.toString();
}
|
|
From: Tomas G. <to...@pr...> - 2012-08-23 07:51:36
|
Hi Hans, Path 1 is correct. Path 2 is not. The Validation Authority _is_ the OCSP responder, but with added functionality to also distribute CRLs and CA certificates, i.e. a one-stop shop for clients to fetch all needed verification material. PrimeKey has developed a standalone tool that reads CRLs and feeds it into the database (according to path 1). The tool also has an API that can be used. This is part of PrimeKey's support offering. Regards, Tomas On 08/22/2012 11:50 PM, Hans Witvliet wrote: > Hi all, > > One of our innovation-managers keeps on haunting me with the subject... > > He asked me to demonstrate a stand-alone ocsp-responder. > > Point is, the corresponding CA isn't an ejbca entity. > >>From the documentation (correct me if i;m mistaken) there seems to be > two paths. > > 1) Directly populate the database of the oscp-machine. > it seems i need somehow to get hold of: > issuerDN > serialNumber > status > revocationDate > revocationReason > certificateProfileId > > 2) install an ejbca-Validation Authority, and have that feeding the > ocsp-responders. > > Second option looks more scalable/flexible/robust, but the question > remains how to feed the V.A. > > All i know sofar, is that i can do a wget for a fresh CRL every hour. > And probably it is from a Microsoft machine, (so no chance of doing > something intelligent there ;-) > > Any suggestions? > > Hans > > ------------------------------------------------------------------------------ > Live Security Virtual Conference > Exclusive live event will cover all the ways today's security and > threat landscape has changed and how IT managers can respond. Discussions > will include endpoint security, mobile security and the latest in malware > threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ > _______________________________________________ > Ejbca-develop mailing list > Ejb...@li... > https://lists.sourceforge.net/lists/listinfo/ejbca-develop > |
|
From: Hans W. <hw...@a-...> - 2012-08-22 22:20:47
|
Hi all,
One of our innovation-managers keeps on haunting me with the subject...
He asked me to demonstrate a stand-alone ocsp-responder.
Point is, the corresponding CA isn't an ejbca entity.
>From the documentation (correct me if i;m mistaken) there seems to be
two paths.
1) Directly populate the database of the oscp-machine.
it seems i need somehow to get hold of:
issuerDN
serialNumber
status
revocationDate
revocationReason
certificateProfileId
2) install an ejbca-Validation Authority, and have that feeding the
ocsp-responders.
Second option looks more scalable/flexible/robust, but the question
remains how to feed the V.A.
All i know sofar, is that i can do a wget for a fresh CRL every hour.
And probably it is from a Microsoft machine, (so no chance of doing
something intelligent there ;-)
Any suggestions?
Hans
|
|
From: Tomas G. <to...@pr...> - 2012-08-17 05:40:57
|
Thanks for the info Nick, I created https://jira.primekey.se/browse/ECA-2737 Cheers, Tomas On 08/16/2012 09:16 PM, MacDonald, Nick (Nick) wrote: > Hello: > > I am in the process of reviewing old changes to the EJBCA source base > that were made by a team of developers no longer at the company. In > tracking down a change I came across one thing that I think is > applicable to the current 4.0.11 source base. > > In the file: ejbca_4_0_11\src\java\org\ejbca\core\model\ > InternalResources.java I see the current code: > > private String getLocalizedMessage(final String key, final Object[] > params, final int numOfParams) { > > […] > > try { > > localizedString = localizedString.replaceAll("\\{" + i > + "\\}", param); > > } catch (IllegalArgumentException e) { > > // If "param" contains some specific things, regexp may > fail > > // under some circumstances > > try { > > localizedString = localizedString.replaceAll("\\{" > + i + "\\}", e.getMessage()); > > } catch (IllegalArgumentException e1) { > > localizedString = localizedString.replaceAll("\\{" > + i + "\\}", "IllegalArgumentException"); > > } > > } > > } > > // Remove all remaining {} if any > > localizedString = localizedString.replaceAll("\\{\\d\\}", ""); > > return localizedString; > > } > > It looks like someone tried to work around a “bug” they encountered and > added protective code to the replaceAll. > > I believe the correct fix to be thus: > > localizedString = > localizedString.replaceAll("\\{" + i + "\\}", > Matcher.quoteReplacement(param)); > > With the call to Matcher.quoteReplacement() there will be no characters > that should cause any exceptions, and the protective code will not be > necessary. > > This is a very common problem for users of regular expressions in Java, > and it’s advisable that someone search your code base for calls to such > functions replaceAll() being one such method but there are others, such > as replaceFirst(). There are quoting functions for the first parameter > as well as for the last parameter, but they are unfortunately not the > same. For the first parameter you would use: Pattern.quote() > > > > ------------------------------------------------------------------------------ > Live Security Virtual Conference > Exclusive live event will cover all the ways today's security and > threat landscape has changed and how IT managers can respond. Discussions > will include endpoint security, mobile security and the latest in malware > threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ > > > > _______________________________________________ > Ejbca-develop mailing list > Ejb...@li... > https://lists.sourceforge.net/lists/listinfo/ejbca-develop > |
|
From: MacDonald, N. (Nick) <nma...@av...> - 2012-08-16 19:16:15
|
Hello:
I am in the process of reviewing old changes to the EJBCA source base that were made by a team of developers no longer at the company. In tracking down a change I came across one thing that I think is applicable to the current 4.0.11 source base.
In the file: ejbca_4_0_11\src\java\org\ejbca\core\model\ InternalResources.java I see the current code:
private String getLocalizedMessage(final String key, final Object[] params, final int numOfParams) {
[...]
try {
localizedString = localizedString.replaceAll("\\{" + i + "\\}", param);
} catch (IllegalArgumentException e) {
// If "param" contains some specific things, regexp may fail
// under some circumstances
try {
localizedString = localizedString.replaceAll("\\{" + i + "\\}", e.getMessage());
} catch (IllegalArgumentException e1) {
localizedString = localizedString.replaceAll("\\{" + i + "\\}", "IllegalArgumentException");
}
}
}
// Remove all remaining {} if any
localizedString = localizedString.replaceAll("\\{\\d\\}", "");
return localizedString;
}
It looks like someone tried to work around a "bug" they encountered and added protective code to the replaceAll.
I believe the correct fix to be thus:
localizedString = localizedString.replaceAll("\\{" + i + "\\}", Matcher.quoteReplacement(param));
With the call to Matcher.quoteReplacement() there will be no characters that should cause any exceptions, and the protective code will not be necessary.
This is a very common problem for users of regular expressions in Java, and it's advisable that someone search your code base for calls to such functions replaceAll() being one such method but there are others, such as replaceFirst(). There are quoting functions for the first parameter as well as for the last parameter, but they are unfortunately not the same. For the first parameter you would use: Pattern.quote()
|
|
From: Tomas G. <to...@pr...> - 2012-08-16 12:24:29
|
We are delighted to present a new release of EJBCA 4. EJBCA 4 continues to get new features and fixes and is state of the art PKI. This is a maintenance release containing a few new features and improvements. * Noteworthy changes: - Possibility for External OCSP responder key renewal at absolute times. - Certificate expiration notifier can now filter on certificate profiles, not only CAs. - A publisher for sampling of issued certificates. - Added user friendly output of certificate profile dependencies when deletion can not be done. - A new language tool for developers and localizers, by David Carella of Linagora. - OCSP rekeying now works on JBoss 6.1.0 and JBoss EAP5 This is a plug-in upgrade for users of EJBCA 4. As always, the full changelog can be viewed in our issue tracker: https://jira.primekey.se/browse/ECA?report=com.atlassian.jira.plugin.system.project:changelog-panel Regards, PrimeKey EJBCA Team |
106 messages has been excluded from this view by a project administrator.
