Page MenuHomeVyOS Platform
Create Task
Maniphest T2799

VyOS Certificates Manager
Closed, ResolvedPublicFEATURE REQUEST
Actions

Description

For a long time, we using easy-rsa scripts to deal with certificates for OpenVPN
now, we added (and continue adding) software and capabilities that require certificates in one way or other
that brings us to essential needs like

  • control system-wide trusted certificates, to be able to import new trusted CAs and/or standalone certificates to store
  • be able to create and manage CAs (certificate authorities) and issue certificates for server and client sides
  • view and check certificates before import, etc

After researching the available options, we come across smallstep which seems suitable for what we trying to achieve

see https://smallstep.com/docs/design-document/

This task is root task for future vyos certificate management

Details

Difficulty level
Unknown (require assessment)
Version
-
Why the issue appeared?
Will be filled on close
Is it a breaking change?
Unspecified (possibly destroys the router)
Issue type
Internal change (not visible to end users)

Related Objects
Search...

Event Timeline

syncer created this task.Aug 15 2020, 12:04 PM
jack9603301 added a subscriber: jack9603301.Aug 15 2020, 12:13 PM
Codec added a subscriber: Codec.Feb 6 2021, 3:18 PM
Viacheslav added a subtask: T3642: PKI configuration.Jun 21 2021, 6:08 PM
sarthurdev changed the status of subtask T3642: PKI configuration from Open to In progress.Jun 29 2021, 12:37 PM
sarthurdev changed the status of subtask T3642: PKI configuration from In progress to Needs testing.Jul 22 2021, 3:49 PM
erkin set Issue type to Internal change (not visible to end users).Aug 29 2021, 1:27 PM
erkin removed a subscriber: Active contributors.
syncer edited projects, added VyOS 1.3 Equuleus (1.3.0); removed VyOS 1.3 Equuleus.Nov 6 2021, 11:24 AM
syncer edited projects, added VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).Aug 29 2022, 7:05 AM
syncer edited projects, added VyOS 1.3 Equuleus (1.3.4); removed VyOS 1.3 Equuleus (1.3.3).Jul 12 2023, 9:40 PM
syncer edited projects, added VyOS 1.3 Equuleus (1.3.5); removed VyOS 1.3 Equuleus (1.3.4).Aug 25 2023, 9:29 PM
syncer edited projects, added VyOS 1.3 Equuleus (1.3.6); removed VyOS 1.3 Equuleus (1.3.5).Dec 17 2023, 11:37 PM
c-po closed subtask T3642: PKI configuration as Resolved.Jan 5 2024, 9:33 PM
dmbaturin closed this task as Resolved.Jan 8 2024, 7:17 PM
dmbaturin claimed this task.
dmbaturin added a subscriber: dmbaturin.

I suppose the current PKI CLI does fulfill the requirements of this task.

dmbaturin mentioned this in 1.3.6.Feb 3 2024, 1:59 AM