Currently sub-CA creation is a hack using a partial CS.cfg and the methods that are used during installation to generate the CA and server / subsystem certs.
Refactor to use the profile subsystem so that certificate issuance results in the usual audit events, etc.
Per CS/DS Meeting of 10/12/2015 - 10.3
attachment pki-ftweedal-0052-Lightweight-CAs-enrol-cert-via-profile-subsystem.patch
Lightweight CA should be covered as a new feature on Idm side
Pushed to master (da4ca36ef5e378f55259438b4f72491d0966e5e7)
Metadata Update from @ftweedal: - Issue assigned to ftweedal - Issue set to the milestone: 10.3.0.a2
Dogtag PKI is moving from Pagure issues to GitHub issues. This means that existing or new issues will be reported and tracked through Dogtag PKI's GitHub Issue tracker.
This issue has been cloned to GitHub and is available here: https://github.com/dogtagpki/pki/issues/2183
If you want to receive further updates on the issue, please navigate to the GitHub issue and click on Subscribe button.
Subscribe
Thank you for understanding, and we apologize for any inconvenience.
Login to comment on this ticket.