How to enroll a cert using an encrypted private key ? #62
Comments
|
I don't know about sscep, but in the general case if you want to automate using a private key, it must not have a passphrase. Having said that, you can use an "ssh agent" to enter a passphrase manually once, and have it be remembered (again, this is the general case, not specific to sscep). |
chris2511
added a commit
to chris2511/sscep
that referenced
this issue
Jul 26, 2023
… enroll request Implement the Openssl syntax according to: https://www.openssl.org/docs/man3.0/man1/openssl-passphrase-options.html Enable this feature (and keyboard login) for ENGINE keys. Removing the passphrase from a software key is sometimes possible, but removing it from from an ENGINE key is usually impossible. The OS will drop the allocated memory for the UI_METHOD. This is a short running app after all.
chris2511
added a commit
to chris2511/sscep
that referenced
this issue
Jul 26, 2023
… enroll request Implement the Openssl syntax according to: https://www.openssl.org/docs/man3.0/man1/openssl-passphrase-options.html Enable this feature (and keyboard login) for ENGINE keys. Removing the passphrase from a software key is sometimes possible, but removing it from from an ENGINE key is usually impossible. The OS will drop the allocated memory for the UI_METHOD. This is a short running app after all. Signed-off-by: Christian Hohnstaedt <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Hi there,
I've an encrypted private key by using a passphrase and now i would like to get a certificate.
Is there a parameter or flag to enabled in order to get a certificate without prompting this passphrase from command line?
Regards.
The text was updated successfully, but these errors were encountered: