Hey folks - I've been working on a script to automate the renewal of freeradius certs via sscep against OpenXPKI's scep implementation.
The challenge (pun intended?) is that all my keys have a passphrase. I could use openssl to strip the pass phrase, renew the cert, and then re-add the phrase, but that feels clunky. It doesn't seem that sscep allows piping in the passphrase from a file or the command line and I know this isn't an sscep support list, so we don't have to get deep in to the weeds there. But I'm curious if OpenXPKI or this group has any tips or ideas? Is there some way to avoid passing the key all together for the cert renewal? Anyone have clever ideas? Thanks in advance for any thoughts you have. If I can get this working. I'll be glad to share the end result.
_______________________________________________ OpenXPKI-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openxpki-users
