IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2025-01-27 16:46:42 -06:00
Code Issues Packages Projects Releases Wiki Activity
867f7691e9
freeipa/ipaserver
History
Martin Kosek 867f7691e9 Add OCSP and CRL URIs to certificates 
Modify the default IPA CA certificate profile to include CRL and
OCSP extensions which will add URIs to IPA CRL&OCSP to published
certificates.

Both CRL and OCSP extensions have 2 URIs, one pointing directly to
the IPA CA which published the certificate and one to a new CNAME
ipa-ca.$DOMAIN which was introduced as a general CNAME pointing
to all IPA replicas which have CA configured.

The new CNAME is added either during new IPA server/replica/CA
installation or during upgrade.

https://fedorahosted.org/freeipa/ticket/3074
https://fedorahosted.org/freeipa/ticket/1431
2012-12-07 11:00:17 -05:00
..
install Add OCSP and CRL URIs to certificates 2012-12-07 11:00:17 -05:00
plugins Add detection for users from trusted/invalid realms 2012-12-06 10:34:23 -05:00
__init__.py Change FreeIPA license to GPLv3+ 2010-12-20 17:19:53 -05:00
dcerpc.py Add detection for users from trusted/invalid realms 2012-12-06 10:34:23 -05:00
ipaldap.py Provide 'protocol' argument to IPAdmin 2012-11-23 12:19:20 +01:00
rpcserver.py Add detection for users from trusted/invalid realms 2012-12-06 10:34:23 -05:00