I made my root CA a while ago, and then I made an intermediary CA.
I can then do one of two things which are easy and obvious.
1. ./pkitool --csr client1 (creating unsigned is not a problem)
2. ./pkitool --sign client1 (great for signing with the root CA; what i don't want to do)
What's not obvious.
I haven't found anyway in pkitool to specify which CA i want an unsigned key signed by.
Scouring google has also yielded nothing.
How to do?
How to sign keys with intermediary CA?
Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech
-
- OpenVpn Newbie
- Posts: 15
- Joined: Fri Jun 26, 2015 1:29 am
-
- OpenVpn Newbie
- Posts: 15
- Joined: Fri Jun 26, 2015 1:29 am
Re: How to sign keys with intermediary CA?
SOLVED
I found the cook book. No one else likes to detail setting up an intermediary ca anywhere on the net...that is next to unbelievable.
I found the cook book. No one else likes to detail setting up an intermediary ca anywhere on the net...that is next to unbelievable.
- Traffic
- OpenVPN Protagonist
- Posts: 4066
- Joined: Sat Aug 09, 2014 11:24 am
Re: How to sign keys with intermediary CA?
I presume you mean JJK's excellent workshamil wrote:I found the cook book
Good place for a quick plug: https://openvpn.net/index.php/open-source/books.html
You are welcome to share your solution here ..