Menu
▾
▴
[Ejbca-develop] Is it possible to configure/create EJBCA Internal Key Binding using pre-generated private key and certificate?
|
From: <oh...@ya...> - 2019-07-31 13:56:54
|
Hi, When we deploy systems here, as much as possible, we want to have all materials for the installation prepared ahead of time. So, for example, we if the installation requires a server cert and key, we pre-generate the key and cert and provide those to the installers. When we install the EJBCA OCSP responder now, when we are creating the Internal Key Binding, it looks like we have to generate a CSR by clicking the "CSR" button, then get that CSR signed to get the cert by our CA, and then import the CA-issued cert to create the Internal Key Binding. If we have an appropriate (e.g., with purpose OCSPSigning, etc.) cert and key already prepared and issued by our own CA, is there a way to create the Internal Key Binding for OCSP responder using those pre-staged cert and key? In other words, we want to be able to create the Internal Key Binding/OCSPKeyBinding, but instead of creating the CSR in the Adminweb, we want to just import our own pre-prepared cert and key. Is there a way to do that? Thanks,Jim |
