mirrors/vault
1
0
Fork 0
mirror of https://github.com/hashicorp/vault.git synced 2025-08-23 15:41:07 +02:00
Code Issues Projects Releases Wiki Activity
vault/website/content/docs/commands/pki
History
Victor Rodriguez b9e949bf73
Support all fields of the name constraints extension when generating CA certificates (#29245) 
Support all fields of the name constraints extension when generating CA certs.

The PKI secrets engine only provided parameter permitted_dns_domains to create
the name constraints extension when generating CA certificates.

Add the following parameters to provide full support for the extension:

  * permitted_email_addresses
  * permitted_ip_ranges
  * permitted_uri_domains
  * excluded_dns_domains
  * excluded_email_addresses
  * excluded_ip_ranges
  * excluded_uri_domains

Specifying any combination of these parameters will trigger the creation of the
name constraints extension as per RFC 5280 section 4.2.1.10.
2024-12-20 14:55:25 -05:00
..
health-check.mdx
Support all fields of the name constraints extension when generating CA certificates (#29245)
2024-12-20 14:55:25 -05:00
index.mdx
[docs] Convert titles to sentense case (#21426)
2023-06-30 19:22:07 -04:00
issue.mdx
Add PKI-CLI to docs (#19669)
2023-03-30 07:31:48 -04:00
list-intermediates.mdx
Add PKI-CLI to docs (#19669)
2023-03-30 07:31:48 -04:00
reissue.mdx
Add PKI-CLI to docs (#19669)
2023-03-30 07:31:48 -04:00
verify-sign.mdx
Add PKI-CLI to docs (#19669)
2023-03-30 07:31:48 -04:00