summaryrefslogtreecommitdiffstats
path: root/pki/base/ocsp/shared/conf/CS.cfg.in
Commit message (Collapse)AuthorAgeFilesLines
* Fixes to cloning and security domain tables for client auth internaldb userAde Lee2012-03-091-0/+1
| | | | | | | | | | | | | | | | | | | | | The mechanism for getting an ldap connection to the internaldb was incorrect, both in the Security Domain Session Table and the DatabasePanel. As a result, connections to the internaldb failed for accessing the security domain session table and when trying to clone a master which connects to its database using client auth. The thread that handles reading the security domain session table is now only instantiated when running on a configured security domain master. Additionally, needed acls for the client auth certificate ldap user have been moved to manager.ldif. This includes acls to allow creation and management of replication agreements and replication users (now being created under ou=csusers, cn=config) Added logs to show when ldif import errors occur. Also made sure to write and remove master ldap password for use in replication. Ticket #5
* Option to change default algorithmsAndrew Wnuk2012-02-291-0/+1
| | | | | | RSA should be default selection for transport, storage, and audit keys till ECC is fully implemented. Bug #787806.
* Removed OS subsystem.Endi Sukma Dewata2012-02-281-0/+1
| | | | | | | | | | The OS subsystem was previously used to get the PID and to handle shutdown signals using the OSUtil. It has been removed because the functionalities can be obtained without using native code. The PID will now be read from an external PID file created by the wrapper script. The shutdown signals will now be handled by shutdown hook. Ticket #90
* Bug 769060 - Self-tests fail at OCSP subsystem restart -- with null ↵Christina Fu2012-01-191-1/+1
| | | | | | | | CertNickName in the audit output The issue was that the parameter ocsp.cert.signing.certusage=StatusResponder was missing the "certusage" component in CS.cfg.in. Adding it fixed the proble m. cert nickname is added automatically at installation/configuration.
* Bugzilla BZ# 699809 - Convert certificate system to use systemdvakwetu2011-09-091-0/+1
| | | | git-svn-id: svn+ssh://svn.fedorahosted.org/svn/pki/trunk@2196 c9f7a03b-bd48-0410-a16d-cbbf54688b0b
* Resolves #712931 - CS requires too many ports to be open in the FWvakwetu2011-08-231-0/+2
| | | | git-svn-id: svn+ssh://svn.fedorahosted.org/svn/pki/trunk@2160 c9f7a03b-bd48-0410-a16d-cbbf54688b0b
* Fix Bugzilla Bug#649910 - Console: an auditor or agent can be added to an ↵jmagne2011-05-181-1/+1
| | | | | | administrator group. git-svn-id: svn+ssh://svn.fedorahosted.org/svn/pki/trunk@2001 c9f7a03b-bd48-0410-a16d-cbbf54688b0b
* Bugzilla Bug #684381 - CS.cfg specifies incorrect type of comments . . .mharmsen2011-03-231-5/+3
| | | | git-svn-id: svn+ssh://svn.fedorahosted.org/svn/pki/trunk@1915 c9f7a03b-bd48-0410-a16d-cbbf54688b0b
* Bugzilla BZ# 683581: CA configuration with ECC(Default EC curve-nistp521) CA ↵vakwetu2011-03-231-1/+2
| | | | | | fails with 'signing operation failed' git-svn-id: svn+ssh://svn.fedorahosted.org/svn/pki/trunk@1912 c9f7a03b-bd48-0410-a16d-cbbf54688b0b
* Bug 662127 - CC doc Error: SignedAuditLog expiration time interface is no ↵cfu2011-01-191-5/+5
| | | | | | longer available through console git-svn-id: svn+ssh://svn.fedorahosted.org/svn/pki/trunk@1748 c9f7a03b-bd48-0410-a16d-cbbf54688b0b
* Bugzilla 661142 - Verification should fail when a revoked certificate is addedcfu2011-01-111-0/+4
| | | | | | | | - adding -P to audit signing certs trust database - making specific certusage check git-svn-id: svn+ssh://svn.fedorahosted.org/svn/pki/trunk@1723 c9f7a03b-bd48-0410-a16d-cbbf54688b0b
* Bugzilla Bug #586073 - Add new 'mod_revocator' runtime dependency to RA and TPSmharmsen2010-12-141-0/+324
git-svn-id: svn+ssh://svn.fedorahosted.org/svn/pki/trunk@1624 c9f7a03b-bd48-0410-a16d-cbbf54688b0b
generated by cgit (git 2.34.1) at 2024-06-08 08:31:05 +0000