Using Vault PKI to manage signer CAs

sandromlp · July 1, 2020, 2:54pm

Hey,

I may have a bit different requirement, as I do not need actual Certificates, but I need an intermediate CA to create signer CAs and manage those, from which the actual certificates will be created.

Somehow I am not sure if this is a valid use-case with vault as it seems to only be able to create end-certificates, not further CA or am I reading something wrong?

Best
Sandro

nhw76 · July 1, 2020, 3:06pm

Vault can certainly sign CSRs for intermediate CAs:

sandromlp · July 1, 2020, 4:23pm

awesome, thanks for helping! I was a bit wondering as it was mentioning so hard to keep things simple, but that makes sense no

Topic		Replies	Views
Issue new intermediate CA and download its private key Vault	3	505	February 6, 2023
Signing my intermediate CA Vault	2	1741	December 22, 2020
Vault PKI issue Sub.Internediate/Issuer CA certificate Vault	1	1187	September 18, 2020
Vault Intermediate CA - problem getting CSR signed by ADCS(certreq) Vault	0	302	July 26, 2021
Vault as intermediate PKI with Windows CA Vault	6	848	January 5, 2022

Using Vault PKI to manage signer CAs

Related topics