Reading through the clca documents on GitHub - can it import an existing root CA that was created with OpenSSL ? Or is it just less painful to start over ?
On Tue, Jul 20, 2021 at 3:17 PM Oliver Welter <[email protected]> wrote: > Hi, > > using an HSM with OpenXPKI requires a suitable OpenSSL driver for it, > usually a PKCS11 library, and then "its just config". I have seen > OpenXPKI working with a Luna some time ago - so yes it is possible. > > While you can run Root and Intermediate in two realms on a single > instance I recommend to use clca for the root. > > best regards > > Oliver > > Am 20.07.21 um 21:04 schrieb BuzzSaw Code: > > Hi, > > > > I'm trying to setup OpenXPKI in our environment and the security > > folks want me to use an HSM appliance (SafeNet/Luna). Is integration > > with an appliance like that as simple as getting the OpenSSL HSM > > integration configured correctly ? > > > > We plan on using OpenXPKI for root and intermediate CAs - can one > > instance handle both roles ? > > > > --BZ > > > > > > > > > > _______________________________________________ > > OpenXPKI-users mailing list > > [email protected] > > https://lists.sourceforge.net/lists/listinfo/openxpki-users > > > > > -- > Protect your environment - close windows and adopt a penguin! > > > _______________________________________________ > OpenXPKI-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/openxpki-users >
_______________________________________________ OpenXPKI-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openxpki-users
