Dear Oliver I commented the line 324 "- enter_policy_violation_comment > CHECK_FOR_SERVER_KEYGEN ? has_policy_violation" and restarted the OpenXPKI daemon but OpenXPKI still gives the approve request feature. I am using OpenXPKI 3.10.2 community edition. Regards
Hello Scott, ONE possible solution would be to remove the path "enter_policy_violation_comment" in the CSR workflow process "SUBJECT_COMPLETE" state, see here https://github.com/openxpki/openxpki-config/blob/community/config.d/realm.tpl/workflow/def/certificate_signing_request_v2.yaml#L324 This will leave the user with the option to cancel the workflow or change the subject. Oliver On Tuesday, 8 June 2021, 01:42:52 pm GMT+5, Scott Thomas via OpenXPKI-users <[email protected]> wrote: Dear Oliver, I just want to ensure that a certificate with duplicate subject should not be requested. How can i configure it in OpenXPKI? help me in detail.what's the Configuration to hard fail the duplicate subject request? Regards Hi Scott, I am sorry I still dont know what you are looking for - if you expect a more detailed help please describe your problem and efforts already done. Oliver Am 07.06.21 um 11:00 schrieb Scott Thomas: > Dear Oliver, > > Please guide me to configure OpenXPKI for unique subject. > > Regards On Monday, 7 June 2021, 02:02:30 pm GMT+5, Scott Thomas via OpenXPKI-users <[email protected]> wrote: Dear Oliver, Please guide me to configure OpenXPKI for unique subject. Regards On Thursday, 27 May 2021, 05:05:05 pm GMT+5, Scott Thomas <[email protected]> wrote: I didn't receive this email although I've subscribed to this mailing list.Anyhow what's the Configuration to hard fail the duplicate subject? Sent from Yahoo Mail on Android On Thu, May 27, 2021 at 2:19 AM, Oliver Welter<[email protected]> wrote: Hi Scott, did you miss my response? https://sourceforge.net/p/openxpki/mailman/message/37286181/ Oliver Am 26.05.21 um 19:46 schrieb Scott Thomas via OpenXPKI-users: > Hi. > The response on subject thread is still awaited. > A timely response will be appreciated. > Thanks > > Sent from Yahoo Mail on Android > <https://go.onelink.me/107872968?pid=InProduct&c=Global_Internal_YGrowth_AndroidEmailSig__AndroidUsers_wl=ym_sub1=Internal_sub2=Global_YGrowth_sub3=EmailSignature> > > On Thu, May 20, 2021 at 12:02 AM, Scott Thomas via OpenXPKI-users > <[email protected]> wrote: > Bonjour, > > I have a special case that requires only one and unique certificate > should be issued per subject name. Default OpenXPKI config issues > multiple certs with same credentials. > > Does OpenXPKI support unique certificate subject through configuration? > > Regards > > Sent from Yahoo Mail on Android > ><https://go.onelink.me/107872968?pid=InProduct&c=Global_Internal_YGrowth_AndroidEmailSig__AndroidUsers_wl=ym_sub1=Internal_sub2=Global_YGrowth_sub3=EmailSignature> > _______________________________________________ > OpenXPKI-users mailing list > [email protected] > <mailto:[email protected]> > https://lists.sourceforge.net/lists/listinfo/openxpki-users > <https://lists.sourceforge.net/lists/listinfo/openxpki-users> > > > > _______________________________________________ > OpenXPKI-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/openxpki-users > -- Protect your environment - close windows and adopt a penguin! _______________________________________________ OpenXPKI-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openxpki-users _______________________________________________ OpenXPKI-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openxpki-users _______________________________________________ OpenXPKI-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openxpki-users
_______________________________________________ OpenXPKI-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openxpki-users
