[Freeipa-users] Re: Retrieve private key from CA chain
Sam Klein via FreeIPA-users wrote:
Hi Rob,
> Need more context on what you're trying to do.
I hope to use a key to identify each endpoint for a Cisco Identity Services Engine.
To do so, I need a private key.
My hope was that IdM could automate this for me with a CA chain.
Does this context help?
So you need to generate certificate for the Cisco server.
You need to generate your own private key and a CSR from that and submit
it to IPA to issue the certificate.
A certificate in IPA must be associated with an entry (host or service).
So you'll need to create a host or service for the Cisco device and
request the certificate against that host/service.
rob