Red Hat Bugzilla – Bug 248935
CRM #1637604 - RHCS 7.3 - Retrieve Previous Escrowed Cert to New Card
Last modified: 2017-04-10 10:19 EDT
Escalated to Bugzilla from IssueTracker
Description of problem:
How can we restore the last escrowed encryption certificate to a new smart card if an old card is lost/stolen/renewed? We have the DRM (sometimes referred to as 'KRA') installed and can retrieve the current encryption certificate to a new temporary smart card, but we are looking to restore the previous escrowed encryption certificate.
The idea is that when a user gets a new card for whatever reason, it will contain their new signing and encryption certificate and the last escrowed encryption certificate.
Does the CA/DRM support this capability and how can we add the previous escrowed certificate to a new card in addition to the current certificate?
This event sent from IssueTracker by ble [SEG - Certificate System Engineering]
Escalate to bugzilla since we don't docs for this issue. In the meantime,
i will test it then give customer a brief instruction.
This event sent from IssueTracker by ble [SEG - Certificate System
User firstname.lastname@example.org's account has been closed