-
Notifications
You must be signed in to change notification settings - Fork 21
Home
adam-kosseck edited this page Nov 7, 2022
·
6 revisions
cepces is an application for enrolling certificates through CEP and CES. It currently requires certmonger to operate.
It is supported on the following systems:
- Enterprise Linux 8 (RHEL 8 / Rocky / Alma)
- Enterprise Linux 7 (CentOS 7)
- Fedora 24
- Ubuntu 16.04 (Xenial Xerus)
- openSUSE Tumbleweed
Please see the pages regarding Installation, Configuration, and Usage on how to use this application, as well as the Scenarios for hints on how to use deploy it in a hypothetical environment.
- Integrates seamlessly with certmonger for automatic certificate renewal.
- Supports unattended certificate enrollment from a Microsoft Windows Server running Active Directory Certificate Services through CEP and CES.
- Uses Kerberos for authentication.
- Only works with certificate templates that can be used without manual intervention (i.e. no approval is required)
- Only Kerberos is supported for authentication
- Has only been tested with Microsoft Windows Server 2012 R2
- An existing PKI with a Microsoft Windows Server as an issuing CA
- certmonger
- Python 3.3 or greater
- Dependencies specified in
requirements.txt, most notably:cryptographyrequests- [
requests_gssapi][python-requests-kerberos]