230b640 Add new option to allow overriding the detected SCEP CA chain

Authored and Committed by rcritten 3 years ago
    Add new option to allow overriding the detected SCEP CA chain
    
    The -R option was doing double-duty for the SCEP CA.
    
    1. It was required if the SCEP URL used TLS
    2. It override the CA certificate downloaded from the SCEP server
    
    If the chains were different then validating the SCEP responses would
    fail.
    
    https://bugzilla.redhat.com/show_bug.cgi?id=1808613
    
        
file modified
+8 -4
file modified
+5 -1
file modified
+6 -7