Details
-
Type:
New Feature
-
Status: Closed
-
Priority:
Major
-
Resolution: Not needed to fix
-
Affects Version/s: None
-
Fix Version/s: None
-
Component/s: None
-
Labels:None
Description
With stricter and stricter audit requirements having an automated way to check conformance becomes very interesting.
We have the "org.ejbca.core.model.ca.publisher.CertificateSamplerCustomPublisher" and the https://www.ejbca.org/docs/userguide.html#EJBCA%20Validation/Conformance%20Tool%20(EJBCA%20Enterprise%20only) for validation. There is also tools like certlint to check conformance according to CABForum, RFC5280 etc.
With ECA-4485, this would be easy to implement, as first stage at least (i.e. verifying conformance but not being able to automatically stop issuance if non-conformance is detected).