Hi Martin,
thank you for your patience working on this with us - in the last month
we saw a lot of "crappy" SCEP implementations (frankly speeking mostly
stuff from "Fortune 500" companies...) but we managed to get almost all
of them working with our new SCEP stack ;)
I would be happy to read more about your progress with this and would
appreciate if you can add this as a "user story" to our user workshop
which we can hopefully hold in spring 2023.
best regards
Oliver
On 22.11.22 21:00, Martin Arendtsen wrote:
An update on this horrible problem.
It is now kind of working. Kind of is due to Apple having some
interesting way of functioning.
openxpki is now working as it should after migrating away from LibSCEP.
iOS doesn’t expand variables in the profiles installed.
MacOS doesn’t understand the “PENDING” response.
But the openxpki works like a charm.
Next up is to make Apple understand, integrate ldap auth for
requesting certificates and implementing 802.1x on the network.
Big thanks to Oliver for his help - openxpki will be the next CA
solution when possible.
/Martin
man. 22. nov. 2021 kl. 18.48 skrev Oliver Welter <[email protected]>:
Hi Carlos,
there is still some manual work required and the code is not
published yet, I will post a small howto when we have the packages
ready.
Oliver
Am 22.11.21 um 13:01 schrieb Carlos Velasco:
Hi,
Sounds very interesting. How do you switch from one to another?
I'm currently using libscep.
Regards,
Carlos Velasco
Oliver Welter escribió el 22/11/2021 a las 11:07:
Hi Martin,
we have a first beta version of the new SCEP server and I have
installed it on our demo.openxpki.org <http://demo.openxpki.org>
server. So in case you are able to test against this, I would
appreciate if you can give it a try. The service will also be
part of the next release which will likely be done by the end of
the week - so if you prefer/need to test in your own environment
this will also be possible.
The new code is a pure perl implemenation and will accept any
nonce size (and respond with a nonce of the same size) so I hope
that the problem with 8 Bytes nonces will be solved. Any
feedback is highly appreciated.
best regards
Oliver
_______________________________________________
OpenXPKI-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openxpki-users
--
Protect your environment - close windows and adopt a penguin!
_______________________________________________
OpenXPKI-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openxpki-users
_______________________________________________
OpenXPKI-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openxpki-users
--
Protect your environment - close windows and adopt a penguin!
_______________________________________________
OpenXPKI-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openxpki-users
