Closed antwacky closed 2 years ago
There is no actual revocation support at this time, no. Even if there were there's no implemented way to export revocation status from the CA (i.e. CRLs or OCSP). See #53 and #35.
Thanks for the quick reply. That's fine, I read the SCEP spec and found that a SCEP server should not implement a revoke endpoint.
I can do the revocation and CRL generation using openssl and the index.txt database, which is handy.
Hi
Kudos on the project. Is there an endpoint to revoke certificates?
I can see the logic is already there for renewals but I would like to be able to manually revoke a certificate.
Thanks