Bug 151929 - RFE: rhn-ssl-tool does not allow hook for X.509SubjectAltName
Summary: RFE: rhn-ssl-tool does not allow hook for X.509SubjectAltName
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: Red Hat Satellite 5
Classification: Red Hat
Component: Installer
Version: 360
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Mike McCune
QA Contact: Red Hat Satellite QA List
URL:
Whiteboard:
Depends On:
Blocks: 260381
TreeView+ depends on / blocked
 
Reported: 2005-03-23 17:21 UTC by Aaron Spangler
Modified: 2012-03-15 16:10 UTC (History)
1 user (show)

Fixed In Version:
Doc Type: Enhancement
Doc Text:
Clone Of:
Environment:
Last Closed: 2012-03-15 16:10:10 UTC
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)

Description Aaron Spangler 2005-03-23 17:21:55 UTC 
Description of problem:

  Feature request.  Please provide command line option for including
X.509SubjectAltName's in SSL Server certificate.  This would be usefull if
the RHN server was known by several DNS names.

  When rhn-ssl-tool generates a new web cert, it would just have to add the
  optional line 'subjectAltName = alias.example.com' to the bottom of the
  /root/ssl-build/<hostname>/rhn-server-openssl.cnf file when signing the
  certificate request.

  It would be even nicer if the Web GUI for the rhn-installer would then
  prompt the user for any alternate names (aliases).

Todo:  I have not checked if the rhn-client properly accepts the alt names yet.
 This may not even work.  I'll have to gen a cert by hand and see if one of my
rhn clients likes it.

 -Aaron
Comment 1 Robin Norwood 2006-10-17 16:50:05 UTC 
mass reassign to mmccune
Comment 3 Jan Pazdziora 2012-03-15 16:10:10 UTC 
spacewalk-certs-tools-1.1.1-2 added --set-cname option to add subjectAltName.
Note You need to log in before you can comment on or make changes to this bug.