How to get root_ca, intermediates, fingerprint? #3
Comments
You can run |
Thanks @mmalone Kind regards. |
Yes, you can download the certificate from The easiest way to download the root cert on a client is to use the
This does a couple things:
It's a secure root download function. We've also started building a mechanism for securely downloading the root certificate by bootstrapping off of a publicly trusted web PKI certificate. We use this for If other CAs do this some other way that you like better I'd be curious to learn more. |
Thanks @mmalone. |
Hi there,
I've ran through this PoC and I've already deployed on AWS and now I would like to explore the App. I haven't got problems using Chrome/Firefox to browse https://web.emojivoto.local. In fact, I had this alert
NET::ERR_CERT_AUTHORITY_INVALID
as expected. But now I want to usecURL
andstep cli
however I think there are some missed previous steps.In order to use
curl
, browser andstep cli
we need root and intermediate certs. How to get them?According the Quickstart - Step 6. Get the root certificate from Step CA executing
step ca root root.crt
is enough, but it isn't. Then, I tried to obtain them throughstep cli
with--ca-url
, however the--fingerprint
param is also needed. What are these values?, how to get that?The
/usr/local/lib/step/config/ca.json
shows the path for these certs. Using theca.json
is the right way to get them?.Hope you can help me.
Regards.
The text was updated successfully, but these errors were encountered: