Menu
▾
▴
[Ejbca-develop] Hierarchical PKI Architecture
|
From: Ebtehal H. <h.e...@ya...> - 2014-08-27 04:39:29
|
Hi, I try to deploy a hierarchical PKI architecture, that means a PKI architecture with a root CA and some external sub CA in addition to Management CA for managing all CAs & sup CAs, but I have some problems. Here is what i actuall do: - For Management CA, I deploy an EJBCA by default in machine 1; and create another super administrator from this CA & delete the old one. - For Root CA, I was copy the Managment CA in machine 2 and create Root CA; after that i was trying to delete Management CA but it was not deleted. But if i create new superadmin using Root CA the old one will be deleted but the Management CA will not have any permision on Root CA. :( So my question is how i can isolate Root CA from Managment CA without missing the managing & administration of Management CA on all systems & my PKI??? Thanks and best regards, Ebtehal Hassan |
