[Freeipa-users] Re: Managing different Sub CAs in FreeIPA without their shared Root CA
I continued setting this up. From the externally signed ipa root CA I
was trying to create
a nested structure of additional CAs. However this doesn't seem to be supported. Is
that correct? Here is similar of what I tried:
Root (externally signed)
| - external CA
| - servers CA
| - clients CA
| - internal CA
| - internal servers CA
| - internal clients CA
I guess I only could do this without the intermediate external and internal CA.
Regards
Alex
It ate the formatting, sorry; However I hope it clear that I tried to sketch
some nested hierarchy.
Regards
Alexander