Open pki-bot opened 3 years ago
Comment from mharmsen (@mharmsen) at 2017-10-31 16:43:23
Metadata Update from @mharmsen:
Comment from mharmsen (@mharmsen) at 2017-11-09 14:06:39
Per PKI Team Meeting of 20171109: Future
Comment from mharmsen (@mharmsen) at 2017-11-09 14:06:42
Metadata Update from @mharmsen:
This issue was migrated from Pagure Issue #2839. Originally filed by edewata (@edewata) on 2017-10-23 17:18:45:
Ticket 2654 added new signing info audit events at startup time to record which keys will be used by each CA (i.e. host CA or LWCA) for cert and OCSP signing later. However, at the actual cert or OCSP signing itself, the current audit event does not indicate which LWCA actually does the signing so the key cannot be determined. To fix the problem, the cert and OCSP signing events for LWCA should be modified to include the LWCA ID (i.e. authority ID).
Cert signing:
OCSP signing: