Christina Fu

TPS: boostrap admin/agent user not having any role privileges assigned

2

It appears that the boostrap user that came at installation for TPS is not being assigned any Administrations or TPS Agents roles. Without this, TPS cannot be managed and no...

RHCS-4734 Fix CA validity date is not extended on renewal

1

This patch is to add comments to explain how to allow CA cert issuance to bypass validity restriction while renewing the CA signing cert with the same keys. It should...

Create EST fllcmc example install/setup/test doc

1

The content was tested on my Fedora 43.

Fix CMCAuthForEST to support non-agent users

1

Turns out CMCAuth checks for the user entry in the CA db hence broke the enrollment. It was tested to work before because I used a test user that happened...

Add EST /fullcmc upgrade script

1

- Add device.conf with appropriate extensions for device certificates (keyUsage: digitalSignature, keyEncipherment; extendedKeyUsage: clientAuth) - Update estFullcmcDeviceCert.cfg to remove inappropriate extensions: - Remove nonRepudiation from keyUsage (not appropriate for devices)...

RHCS-5849 add example/chapter for subordinate CA with separate securi…

1

…ty domain This patch was created based on msauton's suggestion in Jira ticket RHCS-5849. This patch adds an installation example for a subordinate CA with a separate security domain from...