... | @@ -19,11 +19,10 @@ More details: |
... | @@ -19,11 +19,10 @@ More details: |
|
## Authentication
|
|
## Authentication
|
|
|
|
|
|
Server at first startup generates:
|
|
Server at first startup generates:
|
|
- server private key
|
|
- root CA private key with public key and a certificate
|
|
- server certificate with public key
|
|
- server private key with public key and a certificate
|
|
|
|
|
|
Server certificate is set to be able to sign other certificates. It will be used to sign agents' certificates.
|
|
Root CA keys and cert is used to sign certs for server and agents. Root CA cert is delivered to agents so they can recognize and accept connections from the server. Server cert is used by server to show its identity to agents.
|
|
Server certificate is delivered to agents so they can recognize and accept connections from the server.
|
|
|
|
|
|
|
|
When a new agent is being added to the server then an agent private key and agent certificate CSR
|
|
When a new agent is being added to the server then an agent private key and agent certificate CSR
|
|
(Certificate Signing Request) are being generated on the agent machine.
|
|
(Certificate Signing Request) are being generated on the agent machine.
|
... | | ... | |