Standard method for storing PKI keys and certs?

Support for security such as Firewalls and securing linux
Post Reply
riromero2k
Posts: 1
Joined: 2018/08/23 22:44:54

Standard method for storing PKI keys and certs?

Post by riromero2k » 2018/08/23 23:00:07

I have a cluster of ~10 hosts, all using X.509 certs for authentication and encryption. I have created my own CA root and intermediate signing certs on an isolated, dedicated CA workstation. I want to deploy the CA certificate as a trusted root across all devices. Then I will generate and sign certs for each device and deploy them across the cluster. Is there a standard configuration model for doing this? I notice that there is an /etc/ssl and /etc/pki directory tree on my CentOS devices. How are these typically used?

- Reuben

mghe
Posts: 766
Joined: 2015/11/24 12:04:43
Location: Katowice, Poland

Re: Standard method for storing PKI keys and certs?

Post by mghe » 2018/08/25 15:12:05

Maybe You will find some useful info here: https://access.redhat.com/documentation ... ent_guide/

Post Reply