cli
cli copied to clipboard
smallstep
🧰 A zero trust swiss army knife for working with X509, OAuth, JWT, OATH OTP, etc.
``` step beta ca provisioner add "Admin" --type=JWK --create --admin-provisioner="Admin JWK" [email protected] --password-file=/home/max/.step/password No admin credentials found. You must login to execute admin commands. ✔ Provisioner: Admin JWK (JWK) [kid:...
### What would you like to be added It's rather fantastic that `step certificate install` currently does all the *magic* required to install a certificate on a system, not only...
The SCEP protocol includes the "challenge password" (for authenticating the SCEP certificate request) in the CSR. Right now it's pretty tricky to generate a CSR that will work with SCEP....
### What would you like to be added I would love to have some kind of hardware binding to secure the credentials being used by smallstep CLI. e.g. for the...
### Description Add flags `--kty`, `--crv`, and `--size` in `step ssh` commands to be able to create different type of keys and certificates. Right now there's a workaround using the...
### Subject of the issue Issuing an immediately attempting to renew the certificate causes the following error ``` frebib@:~$ STEPPATH=/tmp/step step ca certificate $HOSTNAME /tmp/step/$HOSTNAME.crt /tmp/step/$HOSTNAME.key --token $TOKEN ✔ CA:...
### Subject of the issue After installing step-ca in a Docker container, as per instructions [here](https://hub.docker.com/r/smallstep/step-ca), and initializing the (remote) step-cli client as per instructions documented (see previous link), I'm...
This will be particularly useful for automating the`--offline` use case and making it completely non-interactive. See #552 for a bit more context.
I have a private key made by [`cosign`](https://github.com/sigstore/cosign) which errors during `inspect`, specifically in the call to `asn1.Unmarshall`. With the minimal example it should be easy to recreate the issue...
