Jim Green
Reputation: 1118
How to build intermediate CA server detailly using fabric ca?
From Enrolling intermediate ca,must specify “hf.IntermediateCA = true, and
fabric-ca-server start -b admin:adminpw -u http://<enrollmentID>:<secret>@<parentserver>:<parentport>
,while I am fail to build intermediate ca server .
Could somebody give the detail steps?
Upvotes: 0
Views: 552
Answers (1)
ondar07
Reputation: 93
Suppose you launch root ca (localhost:7054) and intermediate ca (localhost:8054) on localhost.
Firstly, you should register identity with hf.IntermediateCA=true attribute by root ca. For example:
fabric-ca-client register --id.name ica --id.attrs '"hf.Registrar.Roles=user,peer",hf.Revoker=true,hf.IntermediateCA=true' --id.secret icapw
Secondly, open intermediate ca home directory and initialize the intermediate ca:
fabric-ca-server init -b icaadmin:icaadminpw -u http://ica:icapw@localhost:7054
Change port of intermediate ca (8054) and some other settings of intermediate ca in fabric-ca-server-config.yaml file.
After that, you can start intermediate ca:
fabric-ca-server start
Upvotes: 1
Related Questions
- Initialise fabric ca with modified fabric-server-config
- Configuring dual-headed CA
- Generate TLS Certs using fabric-ca-server
- Hyperledger fabric CA TLS certificate enrolment using fabric node sdk
- Configuring a custom CA in Hyperledger Fabric
- How to generate tls certificate and keys with fabric-ca
- Use Cryptogen to generate intermediate CA and start an intermediate fabric CA server
- Fabric-CA Root server and Intermediate server
- How to implement Fabric-CA or third party CA in hyperledger fabric
- Fabric-Ca server setup issue