summaryrefslogtreecommitdiffstats
path: root/base/ca/shared/profiles/ca/caCACert.cfg
blob: a88abdf1f1b9b817b4511ffabd1e49b1f56c6900 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
desc=This certificate profile is for enrolling Certificate Authority certificates.
visible=true
enable=true
enableBy=admin
auth.class_id=
name=Manual Certificate Manager Signing Certificate Enrollment
input.list=i1,i2
input.i1.class_id=certReqInputImpl
input.i2.class_id=submitterInfoInputImpl
output.list=o1
output.o1.class_id=certOutputImpl
policyset.list=caCertSet
policyset.caCertSet.list=1,2,3,4,5,6,8,9,10
policyset.caCertSet.1.constraint.class_id=subjectNameConstraintImpl
policyset.caCertSet.1.constraint.name=Subject Name Constraint
policyset.caCertSet.1.constraint.params.pattern=CN=.*
policyset.caCertSet.1.constraint.params.accept=true
policyset.caCertSet.1.default.class_id=userSubjectNameDefaultImpl
policyset.caCertSet.1.default.name=Subject Name Default
policyset.caCertSet.1.default.params.name=
policyset.caCertSet.2.constraint.class_id=validityConstraintImpl
policyset.caCertSet.2.constraint.name=Validity Constraint
policyset.caCertSet.2.constraint.params.range=2922
policyset.caCertSet.2.constraint.params.notBeforeCheck=false
policyset.caCertSet.2.constraint.params.notAfterCheck=false
policyset.caCertSet.2.default.class_id=caValidityDefaultImpl
policyset.caCertSet.2.default.name=CA Certificate Validity Default
policyset.caCertSet.2.default.params.range=2922
policyset.caCertSet.2.default.params.startTime=0
policyset.caCertSet.3.constraint.class_id=keyConstraintImpl
policyset.caCertSet.3.constraint.name=Key Constraint
policyset.caCertSet.3.constraint.params.keyType=RSA
policyset.caCertSet.3.constraint.params.keyParameters=1024,2048,3072,4096
policyset.caCertSet.3.default.class_id=userKeyDefaultImpl
policyset.caCertSet.3.default.name=Key Default
policyset.caCertSet.4.constraint.class_id=noConstraintImpl
policyset.caCertSet.4.constraint.name=No Constraint
policyset.caCertSet.4.default.class_id=authorityKeyIdentifierExtDefaultImpl
policyset.caCertSet.4.default.name=Authority Key Identifier Default
policyset.caCertSet.5.constraint.class_id=basicConstraintsExtConstraintImpl
policyset.caCertSet.5.constraint.name=Basic Constraint Extension Constraint
policyset.caCertSet.5.constraint.params.basicConstraintsCritical=true
policyset.caCertSet.5.constraint.params.basicConstraintsIsCA=true
policyset.caCertSet.5.constraint.params.basicConstraintsMinPathLen=-1
policyset.caCertSet.5.constraint.params.basicConstraintsMaxPathLen=-1
policyset.caCertSet.5.default.class_id=basicConstraintsExtDefaultImpl
policyset.caCertSet.5.default.name=Basic Constraints Extension Default
policyset.caCertSet.5.default.params.basicConstraintsCritical=true
policyset.caCertSet.5.default.params.basicConstraintsIsCA=true
policyset.caCertSet.5.default.params.basicConstraintsPathLen=-1
policyset.caCertSet.6.constraint.class_id=keyUsageExtConstraintImpl
policyset.caCertSet.6.constraint.name=Key Usage Extension Constraint
policyset.caCertSet.6.constraint.params.keyUsageCritical=true
policyset.caCertSet.6.constraint.params.keyUsageDigitalSignature=true
policyset.caCertSet.6.constraint.params.keyUsageNonRepudiation=true
policyset.caCertSet.6.constraint.params.keyUsageDataEncipherment=false
policyset.caCertSet.6.constraint.params.keyUsageKeyEncipherment=false
policyset.caCertSet.6.constraint.params.keyUsageKeyAgreement=false
policyset.caCertSet.6.constraint.params.keyUsageKeyCertSign=true
policyset.caCertSet.6.constraint.params.keyUsageCrlSign=true
policyset.caCertSet.6.constraint.params.keyUsageEncipherOnly=false
policyset.caCertSet.6.constraint.params.keyUsageDecipherOnly=false
policyset.caCertSet.6.default.class_id=keyUsageExtDefaultImpl
policyset.caCertSet.6.default.name=Key Usage Default
policyset.caCertSet.6.default.params.keyUsageCritical=true
policyset.caCertSet.6.default.params.keyUsageDigitalSignature=true
policyset.caCertSet.6.default.params.keyUsageNonRepudiation=true
policyset.caCertSet.6.default.params.keyUsageDataEncipherment=false
policyset.caCertSet.6.default.params.keyUsageKeyEncipherment=false
policyset.caCertSet.6.default.params.keyUsageKeyAgreement=false
policyset.caCertSet.6.default.params.keyUsageKeyCertSign=true
policyset.caCertSet.6.default.params.keyUsageCrlSign=true
policyset.caCertSet.6.default.params.keyUsageEncipherOnly=false
policyset.caCertSet.6.default.params.keyUsageDecipherOnly=false
policyset.caCertSet.8.constraint.class_id=noConstraintImpl
policyset.caCertSet.8.constraint.name=No Constraint
policyset.caCertSet.8.default.class_id=subjectKeyIdentifierExtDefaultImpl
policyset.caCertSet.8.default.name=Subject Key Identifier Extension Default
policyset.caCertSet.8.default.params.critical=false
policyset.caCertSet.9.constraint.class_id=signingAlgConstraintImpl
policyset.caCertSet.9.constraint.name=No Constraint
policyset.caCertSet.9.constraint.params.signingAlgsAllowed=SHA1withRSA,SHA256withRSA,SHA512withRSA,MD5withRSA,MD2withRSA,SHA1withDSA,SHA1withEC,SHA256withEC,SHA384withEC,SHA512withEC
policyset.caCertSet.9.default.class_id=signingAlgDefaultImpl
policyset.caCertSet.9.default.name=Signing Alg
policyset.caCertSet.9.default.params.signingAlg=-
policyset.caCertSet.10.constraint.class_id=noConstraintImpl
policyset.caCertSet.10.constraint.name=No Constraint
policyset.caCertSet.10.default.class_id=authInfoAccessExtDefaultImpl
policyset.caCertSet.10.default.name=AIA Extension Default
policyset.caCertSet.10.default.params.authInfoAccessADEnable_0=true
policyset.caCertSet.10.default.params.authInfoAccessADLocationType_0=URIName
policyset.caCertSet.10.default.params.authInfoAccessADLocation_0=
policyset.caCertSet.10.default.params.authInfoAccessADMethod_0=1.3.6.1.5.5.7.48.1
policyset.caCertSet.10.default.params.authInfoAccessCritical=false
policyset.caCertSet.10.default.params.authInfoAccessNumADs=1