On Tue, 2009-11-03 at 09:37 -0500, Rob Crittenden wrote:
Jason Gerard DeRose wrote:
On Wed, 2009-10-28 at 17:41 -0400, Rob Crittenden wrote:
I had originally implemented allowing a host to request certificates for
other hosts using the requesting IP address. That was a pretty lousy way
On Fri, 2009-10-30 at 16:30 -0400, Rob Crittenden wrote:
I wasn't able to find a command-line program to remove principals from a
keytab so I wrote my own. ktutil can do it but it doesn't take
command-line arguments. Java ships a utility named ktab but adding a
huge dependency for one app
I think I'm getting closer to having certmonger (the provider of the
ipa-getcert command) be useful enough to throw certificate enrollment
requests at the IPA server, and I've got a couple of questions about how
the server decides what it will issue and what it puts in the
certificates that it