Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Java missing support for future Initial Enrollment from SCEP protocol #9

Open
Javex opened this issue Sep 27, 2012 · 1 comment
Open

Java missing support for future Initial Enrollment from SCEP protocol #9

Javex opened this issue Sep 27, 2012 · 1 comment
Assignees
@rad1us
Milestone
v1.3

Comments

@Javex
Copy link

Javex commented Sep 27, 2012

For the Inital Enrollment feature of the SCEP protocol it is necessary to build a PKCS#10 request with a password extension. This can be done by OpenSSL but the Java Keystore creates its certificates by its internal method with keytool.

There are two solutions for this problem:

Either the JKSEngine is fixed so it works both under Windows (see agruener2000/JKSEngine#1) and is fixed to be more flexible regarding the keystore (see agruener2000/JKSEngine#2).

The other solution is to create an option to either use an external or internal method and allow the Java keystore to use generate the key inside the keystore or outside of it. This would then allow for CSR generation by OpenSSL and importing the keys later on. This is probably the easier solution, but fixing the JKSEngine would be nice, too.
@mbartosch mbartosch modified the milestones: v1.2, v1.1 Feb 24, 2014
@mbartosch
Copy link
Contributor

postponed to v1.2

@aleibl aleibl modified the milestones: v1.2, v1.3 Nov 4, 2014
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@rad1us rad1us

Labels
None yet
Projects
None yet
Milestone
v1.3
Development

No branches or pull requests
4 participants
@rad1us @Javex @mbartosch @aleibl