Bug 4110 - Need to add an option to grid-cert-request to control key length
: Need to add an option to grid-cert-request to control key length
Status: NEW
: GSI C
Credentials and Proxies
: 1.1.3
: All All
: P3 enhancement
: ---
Assigned To:
:
: C/Java
:
:
  Show dependency treegraph
 
Reported: 2005-12-15 12:05 by
Modified: 2008-08-12 13:30 (History)


Attachments


Note

You need to log in before you can comment on or make changes to this bug.


Description From 2005-12-15 12:05:57
At least one community (TeraGrid) is requiring 2048 bit keys and the default
key
length generated by grid-cert-request is 1024 and as far as I could tell there
is no option to control the key length.
------- Comment #1 From 2005-12-15 13:45:00 -------
For what it's worth, this can be configured as part of the config files for a
particular CA (it's usually more 
of a CA policy requirement than a particular operational requirement). I think
that in the case of TG and 
other large deployments it seems preferable to change/correct the confguration
there rather than relying 
on the user to get it right. That said, I think adding a command line override
is a fine idea.

/Sam