Open tr1ck3r opened 3 years ago
Believe this would require significant refactoring. May only be worthwhile in the context of adding support for Java Keystore (jks) format.
This issue is related to https://github.com/Venafi/vcert/issues/41.
@tr1ck3r is this issue addressed for you?
PROBLEM SUMMARY VCert CLI format pkcs12 retrieves certificate and private key separately instead of as keystore
STEPS TO REPRODUCE
vCert: 2019/06/26 08:48:18 Successfully connected to TPP vCert: 2019/06/26 08:48:18 Successfully read zone configuration for VCert\P12 vCert: 2019/06/26 08:48:18 Successfully created request for case1.vcert.io vCert: 2019/06/26 08:48:18 Successfully posted request for case1.vcert.io, will pick up by \VED\Policy\VCert\P12\case1.vcert.io vCert: 2019/06/26 08:48:18 Issuance of certificate is pending... vCert: 2019/06/26 08:48:23 unable to retrieve: Unexpected status code on TPP Certificate Retrieval. Status: 400 Private key not found, please modify your selection.
vcert pickup -u https://tpp.venafi.example --tpp-user local:carla --tpp-password newPassw0rd! --pickup-id \VED\Policy\VCert\P12\case1.vcert.io --format pkcs12 --file case1.p12 --key-password newPassw0rd!
vCert: 2019/06/26 08:50:41 Successfully connected to TPP vCert: 2019/06/26 08:50:41 Failed to retrieve certificate: unable to retrieve: Unexpected status code on TPP Certificate Retrieval. Status: 400 OpenSSL format is not allowed because a higher PBE algorithm is required in policy.
vcert enroll -u https://tpp.venafi.example --tpp-user local:carla --tpp-password newPassw0rd! -z VCert\P12 --cn case2.vcert.io --format pkcs12 --file case2.p12 --key-password newPassw0rd!
vCert: 2019/06/26 09:12:42 Successfully connected to TPP vCert: 2019/06/26 09:12:42 Successfully read zone configuration for VCert\P12 vCert: 2019/06/26 09:12:42 Successfully created request for case2.vcert.io vCert: 2019/06/26 09:12:42 Successfully posted request for case2.vcert.io, will pick up by \VED\Policy\VCert\P12\case2.vcert.io vCert: 2019/06/26 09:12:42 Issuance of certificate is pending... vCert: 2019/06/26 09:12:47 Successfully retrieved request for \VED\Policy\VCert\P12\case1.vcert.io PickupID="\VED\Policy\VCert\P12\case2.vcert.io"