PR#147: Add new option to allow overriding the detected SCEP CA chain - - Pagure.io

Static archive. pagure.io was sunset in 2026; this is a read-only snapshot.

certmonger

#147 Add new option to allow overriding the detected SCEP CA chain

Merged Apr 23, 2020 by rcritten. Opened Apr 17, 2020 by rcritten.

rcritten/certmonger bz1808613 into master

Add new option to allow overriding the detected SCEP CA chain

Rob Crittenden • Apr 17, 2020

230b640e67ea27db59d59dd7bef776638ac005dc

Download 147.patch

rcritten commented Apr 17, 2020

The -R option was doing double-duty for the SCEP CA.

It was required if the SCEP URL used TLS
It override the CA certificate downloaded from the SCEP server

If the chains were different then validating the SCEP responses would
fail.

https://bugzilla.redhat.com/show_bug.cgi?id=1808613

Metadata

Assignee

None

Tags

No Tags

Changes Summary 4

file changed

src/certmonger-scep-submit.8.in

file changed

src/getcert-add-scep-ca.1.in

file changed

file changed

Static archive. pagure.io was sunset in 2026; this is a read-only snapshot.

Fedora is sponsored by Red Hat. Learn more about the relationship between Red Hat and Fedora »

© Red Hat, Inc. and others.