Hello,
this is a little bit off-topic (even if it have to work on CentOS ;-)
I'm looking for a tool to manage a small Public Key Infrastructure, with creation/revocation of certificates X.509, export in PKCS#12 format and have the ability to handle CSR (Certificate Signing Request).
I've wrote my own script to perform it (openssl command line based): it's a good way to underdstand concepts, but a little bit difficult to maintain and extend...
After googling a bit, I found PHPki (http://www.sf.net/projects/phpki/), that is nicely web-based (php) but unfortunately, It does not handle CSR.
What tool do you use to manage your PKI ?
Thanks for your comments, clue or advices.
Pierre Bourgin
On Mo, 2007-01-29 at 14:11 +0100, Pierre Bourgin wrote:
Hello,
What tool do you use to manage your PKI ?
I use tinyCA from http://tinyca.sm-zone.net/ and am very happy with it.
Regards, Torsten
I'm looking for a tool to manage a small Public Key Infrastructure, with creation/revocation of certificates X.509, export in PKCS#12 format and have the ability to handle CSR (Certificate Signing Request).
What tool do you use to manage your PKI ?
Have you looked at OpenCA?
Website: http://www.openca.org/
LiveCD: http://www.dartmouth.edu/~deploypki/CA/InstallOpenCALiveCD.html
Barry
Barry Brimer a écrit :
I'm looking for a tool to manage a small Public Key Infrastructure, with creation/revocation of certificates X.509, export in PKCS#12 format and have the ability to handle CSR (Certificate Signing Request).
What tool do you use to manage your PKI ?
Have you looked at OpenCA?
Website: http://www.openca.org/
LiveCD: http://www.dartmouth.edu/~deploypki/CA/InstallOpenCALiveCD.html
Thanks for your reply and the links.
FYI, I played with the LiveCD (so usefull) but OpenCA is too much complicated for my simple needs :(
Regards,
Pierre
Barry Brimer a écrit :
I'm looking for a tool to manage a small Public Key Infrastructure, with creation/revocation of certificates X.509, export in PKCS#12 format and have the ability to handle CSR (Certificate Signing Request).
What tool do you use to manage your PKI ?
Have you looked at OpenCA?
Website: http://www.openca.org/
LiveCD: http://www.dartmouth.edu/~deploypki/CA/InstallOpenCALiveCD.html
Thanks for your reply and the links.
FYI, I played with the LiveCD (so usefull) but OpenCA is too much complicated for my simple needs :(
Another tool, which my be a bit too much complex though, but seems easy to manage, is EJBCA (java based): http://ejbca.sourceforge.net/ There are flash video demonstrations at: http://docs.primekey.se/documentation/en/main-documentation.html
On Monday 29 January 2007 14:11, Pierre Bourgin wrote:
Hello,
this is a little bit off-topic (even if it have to work on CentOS ;-)
I'm looking for a tool to manage a small Public Key Infrastructure, with creation/revocation of certificates X.509, export in PKCS#12 format and have the ability to handle CSR (Certificate Signing Request).
I've wrote my own script to perform it (openssl command line based): it's a good way to underdstand concepts, but a little bit difficult to maintain and extend...
After googling a bit, I found PHPki (http://www.sf.net/projects/phpki/), that is nicely web-based (php) but unfortunately, It does not handle CSR.
What tool do you use to manage your PKI ?
Thanks for your comments, clue or advices.
Pierre Bourgin
CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
I'm using this little webbased cgi tool called webcert to create certs. Written in C but doesn't do revocation though. http://freshmeat.net/projects/webcert/
Regards,
-
Barry Brimer -
Paul Schoonderwoerd -
Pierre Bourgin -
Torsten Luettgert -
Vincent Knecht