Bug 4110 – Need to add an option to grid-cert-request to control key length

Bug 4110 - Need to add an option to grid-cert-request to control key length

Summary:

Need to add an option to grid-cert-request to control key length

Status:	NEW

Product:	GSI C
Component:	Credentials and Proxies
Version:	1.1.3
Platform:	All All

Importance:	P3 enhancement
Target Milestone:	---
Assigned To:	Rachana Ananthakrishnan

URL:
Keywords:	C/Java

Depends on:
Blocks:
	Show dependency tree / graph

Reported:	2005-12-15 12:05 by William E. Allcock
Modified:	2008-08-12 13:30 (History)

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note

You need to log in before you can comment on or make changes to this bug.

Description From William E. Allcock 2005-12-15 12:05:57

At least one community (TeraGrid) is requiring 2048 bit keys and the default
key
length generated by grid-cert-request is 1024 and as far as I could tell there
is no option to control the key length.

------- Comment #1 From Sam Meder 2005-12-15 13:45:00 -------

For what it's worth, this can be configured as part of the config files for a
particular CA (it's usually more 
of a CA policy requirement than a particular operational requirement). I think
that in the case of TG and 
other large deployments it seems preferable to change/correct the confguration
there rather than relying 
on the user to get it right. That said, I think adding a command line override
is a fine idea.

/Sam