The mailing list for users of the eduroam Configuration Assistant Tool (CAT)

[Stefan Winter <stefan.winter AT restena.lu>]

Hello,

at some point long back in the past, I created an issue in GitHub
https://github.com/GEANT/CAT/issues/1 , quoting:

"Some federations have a homogeneous certificate landscape: the
federation operator may have its own special-purpose CA for all of its
clients; or all institutions get certificates from the same commercial CA.
A feature was requested to allow the federation operator to upload the
"default root CA" for their federation; every newly created institution
would then be primed with that CA during enrollment."

I'm ready to implement this; I am only wondering who exactly requested
that and if it's still relevant. I guess the use case would be around
a) national NRO PKI
b) TCS

but can I get a statement that it is /really/ the case that there are
NROs with such a homogeneous landscape? It's fine to reply off-list if
you feel more comfortable with that.

Greetings,

Stefan Winter


-- 
Stefan WINTER
Ingenieur de Recherche
Fondation RESTENA - Réseau Téléinformatique de l'Education Nationale et
de la Recherche
2, avenue de l'Université
L-4365 Esch-sur-Alzette

Tel: +352 424409 1
Fax: +352 422473

PGP key updated to 4096 Bit RSA - I will encrypt all mails if the
recipient's key is known to me

http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xC0DE6A358A39DC66

Attachment: 0x8A39DC66.asc
Description: application/pgp-keys

Attachment: signature.asc
Description: OpenPGP digital signature