Open Source CA / PKI

• From: Jon Kibler
• Date: Tue Aug 19 05:24:18 2008

• List-archive: <http://mailman.nanog.org/pipermail/nanog>
• List-help: <mailto:[email protected]?subject=help>
• List-id: North American Network Operators Group <nanog.nanog.org>
• List-post: <mailto:[email protected]>
• List-subscribe: <http://mailman.nanog.org/mailman/listinfo/nanog>, <mailto:[email protected]?subject=subscribe>
• List-unsubscribe: <http://mailman.nanog.org/mailman/listinfo/nanog>, <mailto:[email protected]?subject=unsubscribe>
• Openpgp: id=CF394253

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Greetings,

I am looking at deploying an open source CA/PKI for a client. It would
be only for internal users and systems. It would have to manage a few
hundred certificates against the organization's self-signed root cert.
It would be installed on a CentOS 5.x platform.

I have looked at OpenCA and Dogtag. Any other packages I should look at?

Does anyone have any opinions as to the pros and cons of either of these
packages or thoughts/comments/experience with other similar packages?

I would especially be interested in your experience with building /
installing the package and your opinion of the documentation available.

TIA for your help!

Jon Kibler
- --
Jon R. Kibler
Chief Technical Officer
Advanced Systems Engineering Technology, Inc.
Charleston, SC  USA
o: 843-849-8214
c: 843-224-2494
s: 843-564-4224

My PGP Fingerprint is:
BAA2 1F2C 5543 5D25 4636 A392 515C 5045 CF39 4253


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.8 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAkiqkSQACgkQUVxQRc85QlPlGACgoAFitZXNLnEJfxKXgah00Vi8
dl4AniBPAJ3zy6krTKkFY3JQRdHAU6b9
=PGoy
-----END PGP SIGNATURE-----

• Follow-Ups:
  • Re: Open Source CA / PKI Julien Goodwin

• Prev by Date: RE: uTorrent, IPv6
• Next by Date: Re: RouterOS performance?
• Date Index
• Thread Index
• Author Index
• Historical