... | ... | @@ -19,11 +19,10 @@ More details: |
|
|
## Authentication
|
|
|
|
|
|
Server at first startup generates:
|
|
|
- server private key
|
|
|
- server certificate with public key
|
|
|
- root CA private key with public key and a certificate
|
|
|
- server private key with public key and a certificate
|
|
|
|
|
|
Server certificate is set to be able to sign other certificates. It will be used to sign agents' certificates.
|
|
|
Server certificate is delivered to agents so they can recognize and accept connections from the server.
|
|
|
Root CA keys and cert is used to sign certs for server and agents. Root CA cert is delivered to agents so they can recognize and accept connections from the server. Server cert is used by server to show its identity to agents.
|
|
|
|
|
|
When a new agent is being added to the server then an agent private key and agent certificate CSR
|
|
|
(Certificate Signing Request) are being generated on the agent machine.
|
... | ... | |