Hello,
I have reported a feature request with GnuTLS, suggesting it to support
PKINIT certificate generation with certtool,
https://gitlab.com/gnutls/gnutls/issues/62
Nikos Mavrogiannopoulos is graciously helping out, and has created a
proposed commit,
https://gitlab.com/gnutls/gnutls/commits/krb
On 01/08/2016 06:59 PM, Rick van Rein wrote:
> kdc_principal_seq mentions name_type==1, or NT-PRINCIPAL. Should
> this not be NT-SRV-INST [Section 6.2 of RFC4120] or does PKINIT not
> care in practice? (The spec does not, but how about implementations?)
I don't think any implementation
