Certificate Management like XCA

Hi Marcel,

I suggest you try the X.509 credential entry type: https://docs.devolutions.net/rdm/mac/kb/rdm-windows/knowledge-base/configure-x509-certificate-credential-entry-type/

It can import/export in a wide variety of certificate formats, and handles certificate chains properly, and it can use the built-in Windows certificate viewer.

Best regards,

Hello Marc-André.

Thank you for your reply.

Agreed, that request is a bit premature.

I already looked at it briefly.
The presentation of the certificate objects are not the best from my point of view.

I have to play around yet to check out the other functionalities.

Hi Marcel

Like Marc already wrote, the best place to start is with X.509 Credential entry which is much more advanced than the old certificate document entry.

If you find a format that you want to import or export that isn't currently there, let us know and we can look at adding it.

At the time I implemented this feature, I had wanted to make a custom UI to show the certificate and chain but there wasn't the development bandwidth at that time. We considered the built-in Windows certificate viewer both familiar and "good enough" (you can view the entire chain, for example). If you've got specific ideas on how this could work better, it would help us see how we can improve that.

I think your point about the notification period before the certificate expiry is a good one, and I'll raise that here.

For the description of where the certificate is installed; can you leverage any of the existing metadata on the entry?

Finally, thanks for pointing out XCA - that's a cool tool I wasn't aware of.

Thanks and kind regards

Hi Richard.

Thanks for your feedback.

About the documentation part, I looked at it again, and I see the documentation tab is also available for this type of objects.
So all good for me, we can use that.

Thanks for raising the point about the notifications.
I guess we can close this request as such.

Best regards.