No that is not possible. We don't trust the values in the CSR, the
(untrusted) client can generate any values it chooses.
What can be done is to make an RA interface where the request is first
sent and then an end entity is created based on the values in the CSR.
That would be a home lesson though :-)
A trusted, secure registration process is needed, if you are not looking
for a demo setup?
Cheers,
Tomas
-----
PrimeKey Solutions offers a commercial EJBCA support subscription and
training for EJBCA. Please see www.primekey.se or contact
info@... for more information.
http://download.primekey.se/documents/ejbca_subscription.pdfhttp://download.primekey.se/documents/ejbca_training.pdfakrause wrote:
> Hi,
>
> EJBCA can handle CSR and generate server certificates. A CSR already holds
> some field values, like CN, O, C, etc. To process a CSR you have to create a
> corresponding end entity at first.
>
> When the certificate is enrolled on basis of the CSR, the actual CSR field
> values are discarded and the the settings of the end entity are used. Is it
> possible the create a certificate with the predefined values of the CSR?
>
> regards,
> Andreas
>
>
>
>
>
>
>
>
-------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2008.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/_______________________________________________
Ejbca-develop mailing list
Ejbca-develop@...
https://lists.sourceforge.net/lists/listinfo/ejbca-develop
