Michael Malone

icon indicating a website link https://smallstep.com icon indicating an email [email protected]

icon company Smallstep icon location San Francisco, CA

Results 5 issues of Michael Malone

Make it easier to include SCEP challenge password in a CSR

2 comment

The SCEP protocol includes the "challenge password" (for authenticating the SCEP certificate request) in the CSR. Right now it's pretty tricky to generate a CSR that will work with SCEP....

enhancement

Add `--install` to `step ca root`

Like the `--install` flag on `step ca bootstrap`, this flag would automatically run `step certificate install` on the root certificate in your system's trust store (but without doing any other...

enhancement
quickfix

`step certificate inspect` does not show email name constraints

2 comment

The `step certificate inspect` subcommand should show name constraints on email addresses (and IP addresses, etc). To reproduce: ``` step certificate inspect

enhancement

Subcommand to fetch SSH root without configuring OpenSSH

5 comment

We should have a subcommand that grabs the SSH client / host cert from the CA (using the fingerprint) without doing the OpenSSH configuration stuff. This would be useful if...

enhancement
UX

Subcommand to create SSH CA host & user root certificates & keys

2 comment

We don't currently have any way to create a host / user root certificate for SSH. You'd need this to rotate your root certificate, or if you run `step ca...

enhancement
UX