Re: [Pki-users] Using SPKAC with DogTag Command line API
On 08/20/2012 03:45 AM, Riccardo Brunetti wrote:
Dear pki-users.
We would like to use the CMCEnroll and HttpClient commands to send a
certificate request to the CA backend and retrieve the certificate.
We succeeded in doing this using a PKCS10 certificate request, but we
need to do the same using a SPKAC request format (like the one
originally produced by Firefox).
As far as we understood the RA subsystem is able to somehow convert the
SPKAC in PKCS10 but in our setup the RA susbsystem is not used.
I do not believe that any of the existing subsystems provide this type
of request conversion.
However, since the Dogtag CA is currently processing keygen tag requests
properly, it should be possible to modify the CA UI to provide the
proper keygen tag to support enabling request generation on Chrome,
Opera, and Safari.
Does anybody of you have some suggestions?
Thank you very much
Cheers
R. Brunetti