You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Each time OKS runs it uses the Purpose enum from the keyspec to select the v3_exteion section to use when signing certs. This is effectively a default since the keyspec is saved to the CA directory and shouldn't change. Might be cleaner to set the x509_extensions config key in the openssl.cnf instead. This will also make use of the CA by non-oks tools (ones that are ignorant of KeySpecs) less difficult / awkward.
The text was updated successfully, but these errors were encountered:
Each time OKS runs it uses the
Purpose
enum from the keyspec to select thev3_exteion
section to use when signing certs. This is effectively a default since the keyspec is saved to the CA directory and shouldn't change. Might be cleaner to set thex509_extensions
config key in theopenssl.cnf
instead. This will also make use of the CA by non-oks tools (ones that are ignorant of KeySpecs) less difficult / awkward.The text was updated successfully, but these errors were encountered: