certificates
certificates copied to clipboard
smallstep
🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.
New output: ``` bin/step ca bootstrap --ca-url https://ca:4443 --fingerprint abc123 The request could not be completed: a root certificate with that fingerprint was not found. Re-run with STEPDEBUG=1 for more...
### Steps to Reproduce Out current setup: 1. We have three step-ca servers running off the same mysql backend. 2. The CA servers are configured to use keycloak as an...
## Hello! - Vote on this issue by adding a 👍 reaction - If you want to implement this feature, comment to let us know (we'll work with you on...
## Hello! - Vote on this issue by adding a 👍 reaction - If you want to implement this feature, comment to let us know (we'll work with you on...
### Steps to Reproduce 1) Do the `ssh host` attempt using OIDC SSO without doing `step ssh login` and without doing `ssh host` attempt beforehand. * Every time before running...
## Hello! - Vote on this issue by adding a 👍 reaction - If you want to implement this feature, comment to let us know (we'll work with you on...
## Hello! - Vote on this issue by adding a 👍 reaction - If you want to implement this feature, comment to let us know (we'll work with you on...
### What would you like to be added ssh-keygen allows manual key revocation by specifying a public key, such as ``` ssh-keygen -s /opt/ssh-ca/ca.pub -k -f /opt/rpt-ansible/etc/ssh/revoked_keys /opt/VMTools/public-keys/old/retired/* /opt/VMTools/public-keys/old/processed/* ```...
## Hello! - Vote on this issue by adding a 👍 reaction - If you want to implement this feature, comment to let us know (we'll work with you on...
A [common](https://www.envoyproxy.io/docs/envoy/latest/operations/admin) [pattern](https://www.rabbitmq.com/management.html) in services that have an Admin API is to stand it up on a separate socket address. And, since a CA is a particularly sensitive application, it...