You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Put token2 into the reader and try to create a selfsigned cert.
Observed behavior:
XCA will insist on inserting token1 and not issue the certificate with token2
Expected behavior:
XCA first looks for the key on the current token(s) only by modulus.
The text was updated successfully, but these errors were encountered:
This is a serious issue if you have a HSM failure and import your keys into a new HSM which obviously has a different serial number.
In my opinion XCA should NOT check the serial or should have a button to register the HSM's serial number. I disabled the serial check, in my opinion the label is sufficent and i needed access to my keys on the replacement HSM. Here's the patch if someone has the same issue:
Issue:
Observed behavior:
XCA will insist on inserting token1 and not issue the certificate with token2
Expected behavior:
XCA first looks for the key on the current token(s) only by modulus.
The text was updated successfully, but these errors were encountered: