Skip to Content Information Center

Markvision Enterprise

Markvision Enterprise

Not your product?

Search the Information Center

Enabling automatic approval of certificate requests in OpenXPKI CA

Stop the OpenXPKI service using openxpkictl stop.

In nano /etc/openxpki/config.d/realm/ca-one/scep/generic.yaml, update the eligible: section:

Old content

eligible:
			initial:
				value@: connector:scep.generic.connector.initial
       		args: '[% context.cert_subject_parts.CN.0 %]'
       		expect:
       			- Build
       			- New

New content

eligible:
			initial:
				value: 1
				# value@: connector:scep.generic.connector.initial
				# args: '[% context.cert_subject_parts.CN.0 %]'
				# expect:
				#	- Build
				#	- New

Notes:

Review the space and indention in the script file.
To approve certificates manually, comment value: 1, and then uncomment the other lines that are previously commented.

Save the file.

Start the OpenXPKI service using openxpkictl start.

Was this article helpful?

Related content

Top