[Pki-devel] Dogtag Build
Hello Team, I have taken the source code git repository, currently pointing origin/DOGTAG_10_6_BRANCH. Can you please text the steps to build Dogtag PKI source ? ./build.sh is failed due to dependencies... is there any automated script or solution to install the required dependencies ? Currently using below OS: NAME="CentOS Linux" VERSION="7 (Core)" ID="centos" ID_LIKE="rhel fedora" VERSION_ID="7" PRETTY_NAME="CentOS Linux 7 (Core)" ANSI_COLOR="0;31" CPE_NAME="cpe:/o:centos:centos:7" HOME_URL="https://www.centos.org/; BUG_REPORT_URL="https://bugs.centos.org/; CENTOS_MANTISBT_PROJECT="CentOS-7" CENTOS_MANTISBT_PROJECT_VERSION="7" REDHAT_SUPPORT_PRODUCT="centos" REDHAT_SUPPORT_PRODUCT_VERSION="7" Thanks, Sharath ___ Pki-devel mailing list Pki-devel@redhat.com https://www.redhat.com/mailman/listinfo/pki-devel
[Pki-devel] KRA Admin certificate
Hello Team, Can you please tell, where shall I get the KRA Admin Certificate ? Thanks, Sharath ___ Pki-devel mailing list Pki-devel@redhat.com https://www.redhat.com/mailman/listinfo/pki-devel
[Pki-devel] To retrieve private key
Hello Team, While retrieving getting Null pointer Exception ?? pki -d ~/.dogtag/nssdb -c Secret@123 -n "PKI Administrator for tecra-db02" kra-key-retrieve --keyID 0x1a --output-data private.key WARNING: BAD_CERT_DOMAIN encountered on 'CN=tecra-db02,OU=pki-tomcat,O=tecra-db02 Security Domain' indicates a common-name mismatch Retrieve Key Information NullPointerException: null Thanks, Sharath ___ Pki-devel mailing list Pki-devel@redhat.com https://www.redhat.com/mailman/listinfo/pki-devel
[Pki-devel] How to find the private key Dogtag
Hello Team, I have certificate and the public key but where i can find the private key ?? pki ca-cert-show 0x30 --output myCert.cer Key ID: 0x1a Algorithm: 1.2.840.113549.1.1.1 Size: 1024 Owner: CN=test_sharath01,O=tecra Public Key: MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCZNLvZQ+WVnBBHM3nw3UldIdVi droNReev+/iMyaLlvuof4io2V1Yv8oT5Yhfxuoblt+nqdWpAwgFeTHKxTpVmyNpZ UiyEdhLssIJ5cPGZ0BjRKjehsapPCMZzslvFbVG8Rb8E0md0av9ncJBcM9caicRz 7qeRqqunXFtvfViZ2QIDAQAB pki -d ~/.dogtag/nssdb -c Secret@123 -n "PKI Administrator for tecra-db02" kra-key-show 0x1a Key ID: 0x1a Algorithm: 1.2.840.113549.1.1.1 Size: 1024 Owner: CN=test_sharath01,O=tecra Public Key: MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCZNLvZQ+WVnBBHM3nw3UldIdVi droNReev+/iMyaLlvuof4io2V1Yv8oT5Yhfxuoblt+nqdWpAwgFeTHKxTpVmyNpZ UiyEdhLssIJ5cPGZ0BjRKjehsapPCMZzslvFbVG8Rb8E0md0av9ncJBcM9caicRz 7qeRqqunXFtvfViZ2QIDAQAB Thanks, Sharath ___ Pki-devel mailing list Pki-devel@redhat.com https://www.redhat.com/mailman/listinfo/pki-devel
[Pki-devel] How generate the pkcs12 certificate Dogtag
Hello Team, Can you please help "How to generate the private key and associated certificate(matching to the Private Key) using Dogtag" ?? Thanks, Sharath ___ Pki-devel mailing list Pki-devel@redhat.com https://www.redhat.com/mailman/listinfo/pki-devel
[Pki-devel] Generate the certificate with key length 2048
HI Team, How to generate the certificate with key length of 2048 bits using dogtag PKI?? How to retrieve the associated public/private key from certificate?? Thanks, Sharath ___ Pki-devel mailing list Pki-devel@redhat.com https://www.redhat.com/mailman/listinfo/pki-devel
Re: [Pki-devel] How to generate the certificate in pkcs #12 format using Dogtag PKI
HI Fraser, I have use case like need to certify the PDF document with "handwritten user signature with associated certificate and it should be validate with the password" ?? How can we achieve this using Dogtag PKI?? Thanks, Sharath On 04/11/19 9:59 AM, Fraser Tweedale wrote: On Fri, Nov 01, 2019 at 05:29:40PM +0530, Sharath wrote: HI Team, 1. Can you please help, how to generate the certificate using pkcs #12 format?? Hi Sharath, PKCS #12 is a key and certificate archival format. The main use of PKCS #12 in Dogtag is retrieving archived keys from the KRA (key recovery authority). If you have a certificate and the corresponding private key you can create a PKCS #12 file using 'openssl pkcs12', or for keys in NSS databases 'pk12util'. If provide more context about your use case, we may be able to provide more assistance :) 2. Is there any to validate the certificate with password using Dogtag PKI ?? Again, it's not clear what you're trying to do. But with PKI you never need a passphrase or private key to validate certificate signatures. Cheers, Fraser Thanks, Sharath ___ Pki-devel mailing list Pki-devel@redhat.com https://www.redhat.com/mailman/listinfo/pki-devel ___ Pki-devel mailing list Pki-devel@redhat.com https://www.redhat.com/mailman/listinfo/pki-devel
[Pki-devel] How to generate the certificate in pkcs #12 format using Dogtag PKI
HI Team, 1. Can you please help, how to generate the certificate using pkcs #12 format?? 2. Is there any to validate the certificate with password using Dogtag PKI ?? Thanks, Sharath ___ Pki-devel mailing list Pki-devel@redhat.com https://www.redhat.com/mailman/listinfo/pki-devel