Menu
▾
▴
Re: [Ejbca-develop] Is it possible to configure/create EJBCA Internal Key Binding using pre-generated private key and certificate?
|
From: Tomas G. <to...@pr...> - 2019-08-05 10:02:40
|
Hi, You can configure everything around key bindings and OCSP key bindings using ejbca.sh CLI. We have customers who have made a "CLI GUI" using the ejbca.sh CLI in the back-end. See: bin/ejbca.sh keybind and bin/ejbca.sh ocsp Regards, Tomas --- PrimeKey Tech Days 2019 Stockholm, Sweden 17-18 September www.primekey.com/tech-days On 2019-07-31 15:56, ohaya--- via Ejbca-develop wrote: > Hi, > > When we deploy systems here, as much as possible, we want to have all > materials for the installation prepared ahead of time. > > So, for example, we if the installation requires a server cert and key, > we pre-generate the key and cert and provide those to the installers. > > When we install the EJBCA OCSP responder now, when we are creating the > Internal Key Binding, it looks like we have to generate a CSR by > clicking the "CSR" button, then get that CSR signed to get the cert by > our CA, and then import the CA-issued cert to create the Internal Key > Binding. > > If we have an appropriate (e.g., with purpose OCSPSigning, etc.) cert > and key already prepared and issued by our own CA, is there a way to > create the Internal Key Binding for OCSP responder using those > pre-staged cert and key? > > In other words, we want to be able to create the Internal Key > Binding/OCSPKeyBinding, but instead of creating the CSR in the Adminweb, > we want to just import our own pre-prepared cert and key. > > Is there a way to do that? > > Thanks, > Jim > > > > _______________________________________________ > Ejbca-develop mailing list > Ejb...@li... > https://lists.sourceforge.net/lists/listinfo/ejbca-develop > |
