简体繁体中英

Microsoft Certificate Authority - Cloning

原文 2018-04-02 11:39:50 5 1 windows/ registry/ pki/ hsm/ certificate-authority

I'm considering to clone a CA that has its private key stored in a HSM from environment A to environment B. However, if the private key cannot be cloned, is there anyway we can start the CA service just so I can generate a new key-pair/CSR or to re-initialise it instead of re-installing the CA service?

Basically, I'm trying to avoid re-installing the CA service if there is an alternative solution such as editing the registry or some configuration file.

1 answers

Some HSMs will allow you to backup and restore the private key material onto a secure token. I know that Safenet's Luna SAs allow this, for example. You could backup the key material and then restore it to a secondary HSM or separate HSM partition (if your HSM supports those) to effectively clone the CA key material.

Certificate signed by unknown authority

Windows Certificate Authority request form submit failure

How to use Fiddler's Root Certificate Authority in FiddleCore?

Docker on Windows (Boot2Docker) - certificate signed by unknown authority error

Golang HTTP x509: certificate signed by unknown authority error

Windows CRYPT32 CertFreeCertificateChainEngine removes user certificate from trusted root authority

docker toolbox on windows then docker run hello-world gets x509: certificate signed by unknown authority

Is there a way to SmartScreen-whitelist a .exe by Microsoft? (without an EV certificate)

Microsoft HTTP Server API - using SSL, how to demand client certificate?

Docker for windows 7- Get https://registry-1.docker.io/v1/repositories/library/hello-world/tags/latest: x509: certificate signed by unknown authority

暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Certificate signed by unknown authority Windows Certificate Authority request form submit failure How to use Fiddler's Root Certificate Authority in FiddleCore? Docker on Windows (Boot2Docker) - certificate signed by unknown authority error Golang HTTP x509: certificate signed by unknown authority error Windows CRYPT32 CertFreeCertificateChainEngine removes user certificate from trusted root authority docker toolbox on windows then docker run hello-world gets x509: certificate signed by unknown authority Is there a way to SmartScreen-whitelist a .exe by Microsoft? (without an EV certificate) Microsoft HTTP Server API - using SSL, how to demand client certificate? Docker for windows 7- Get https://registry-1.docker.io/v1/repositories/library/hello-world/tags/latest: x509: certificate signed by unknown authority

Related Tags

Microsoft Certificate Authority - Cloning

Question

1 answers

solution1 0 2018-05-08 18:31:39

solution1
0 2018-05-08 18:31:39