Displaying 1 result from an estimated 1 matches for "unprivilged_pub_key".
2020 Jun 01
2
would it be possible to extend TrustedUserCAKeys so that certain keys could not be used to authenticate a particular user?
Wondering if it would make sense to have more granular control of
trustedUserCAkeys? I have 1 key used to sign root certs, the key is
shortlived, and is rotated daily. And I have a 2nd key to sign non-
privileged user certs. The non-privileged certs have a longer validity
period, and the signing keys are not rotated as frequently. It would
be nice to ensure this second signing key's