C.1. GetCACaps HTTP Message Format
"GET" CGI-PATH CGI-PROG "?operation=GetCACaps" "&message=" CA-IDENT
This message requests capabilities from CA. The response is a list
of text capabilities, as defined in Appendix C.2. Support for this
message is OPTIONAL, but if it is not supported, the client SHOULD
assume that none of the capabilities in Appendix C.2 are supported.
C.2. CA Capabilities Response Format
The response for a GetCACaps message is a list of CA capabilities, in
plain text, separated by <LF> characters, as follows (quotation marks
are NOT sent):
Appendix C.2
Pritikin, et al. Expires March 10, 2012 [Page 40]
Internet-Draft SCEP September 2011
+--------------------+----------------------------------------------+
| Keyword | Description |
+--------------------+----------------------------------------------+
| "GetNextCACert" | CA Supports the GetNextCACert message. |
| "POSTPKIOperation" | PKIOPeration messages may be sent via HTTP |
| | POST. |
| "Renewal" | Clients may use current certificate and key |
| | to authenticate an enrollment request for a |
| | new certificate. |
| "SHA-512" | CA Supports the SHA-512 hashing algorithm. |
| "SHA-256" | CA Supports the SHA-256 hashing algorithm. |
| "SHA-1" | CA Supports the SHA-1 hashing algorithm. |
| "DES3" | CA Supports the Triple-DES encryption |
| | algorithm. |
+--------------------+----------------------------------------------+
The client SHOULD use SHA-1, SHA-256, or SHA-512 in preference to MD5
hashing if it is supported by the CA.
The server MUST use the texual case specified here, but clients
SHOULD ignore the textual case when processing this message. A
client MUST be able to accept and ignore any unknown keywords that
might be sent back by a CA.
If the CA supports none of the above capabilities the SCEP server
SHOULD return an empty message. A server MAY simply return an HTTP
Error. A client that receives an empty message or an HTTP error
SHOULD interpret the response as if none of the requested
capabilities are supported by the CA.
The Content-type of the reply SHOULD be "text/plain". Clients SHOULD
ignore the Content-type, as older server implementations of SCEP may
send various Content-types.
Example:
GET /cgi-bin/pkiclient.exe?operation=GetCACaps&message=myca
might return:
GetNextCACert<LF>POSTPKIOperation
This means that the CA supports the GetNextCACert message and allows
PKIOperation messages (PKCSreq, GetCert, GetCertInitial, ...) to be
sent using HTTP POST.
分享到:
相关推荐
- **Capabilities (功能):** 描述了Easytrieve Plus软件能够执行的操作和特性。 - **Application (应用):** 阐述了软件的应用场景,说明如何在实际工作中使用软件。 - **Structure (结构):** 描述了软件的结构,可能...
This comprehensive reference details features and capabilities of SharePoint Server 2007. It delivers the easy-to-follow procedures, practical workarounds, and key troubleshooting tactics you need ...
- **DL CA (Downlink Carrier Aggregation)** and **UL CA (Uplink Carrier Aggregation)**: Procedures for testing carrier aggregation functionalities. - **Software Specifications**: Detailed software ...
1. Carrier Sense Multiple Access with Collision Avoidance (CSMA/CA): In CSMA/CA, a node first listens to the channel. If the channel is idle, it waits for a random backoff period before transmitting. ...
The `grid` and `lattice` packages provide advanced graphics capabilities. The `grid` package offers low-level functions for creating complex graphical layouts, while the `lattice` package provides ...
Appium样品。 Chrome和Safari 要求: Appium 12+( ) Chromedriver 2.2( ) 具有root权限的仿真器或设备 设备上的Chrome稳定版( ) 配置: 提取chromedriver后,在系统变量中添加路径。... ca
Find out how to extend the capabilities of Bootstrap with a huge range of tools and plugins, including jQuery, Do more with JavaScript and learn how to create an enhanced user experience Book ...
2. **Change Management**: The software offers robust change management capabilities, allowing users to track modifications from initial creation through testing and final implementation. This ...
CA and neighboring communities.” 进一步细化了测试里程数,635,868英里的测试里程是在加州公共道路上完成的,这些道路主要在硅谷的山景城市(Mountain View, CA)及其周边地区。 - “This marks a 50 percent ...
Find out how to extend the capabilities of Bootstrap with a huge range of tools and plugins, including jQuery, Do more with JavaScript and learn how to create an enhanced user experience Book ...
- **Release 13 and beyond**: Further enhancements to LTE Advanced Pro, including 3-carrier aggregated licensed-assisted access (3x CA LAA) with integrated listen-before-talk (LBT), narrowband IoT (NB-...
4. **CER/CEA**:CER(Capabilities-Exchange-Request)和CEA(Capabilities-Exchange-Answer)消息定义及其参数说明。 5. **DWR/DWA**:DWR(Device-Watchdog-Request)和DWA(Device-Watchdog-Answer)消息定义...
- **URL**: `http://datamil.udel.edu/servlet/com.esri.wms.Esrimap?servicename=DE_census2k_sf1&VERSION=1.0.0&request=capabilities` - **功能**: 提供Delaware州的人口普查数据地图。 - **版本**: 支持WMS ...
- AT+GCAP(Show CAPabilities):显示设备支持的功能列表。 - AT+CPOF(Power OFF):关闭设备电源。 - AT+CFUN(Set Phone Functionality):设置电话功能,如开关机等。 - AT+CPAS(Report Phone Status):...
RapidSSL Rogue CA Certificate 90 Chosen-Prefix Collision Attack 92 Construction of Colliding Certificates 92 Predicting the Prefix 94 What Happened Next 96 Comodo Resellers Breaches 96 StartCom Breach...
Published by O’Reilly Media, Inc., 1005 Gravenstein Highway North, Sebastopol, CA 95472. Overview of Chapters Chapter 1, Python Basics We’ll begin by exploring how to create and run a Python script...
关于雷达方面的知识! EFFECTIVENESS OF EXTRACTING WATER SURFACE SLOPES FROM LIDAR DATA WITHIN THE ACTIVE CHANNEL: SANDY RIVER, OREGON, USA by JOHN THOMAS ENGLISH A THESIS Presented to the Department ...
and Cllaracterization (WiNTECID), Los Angeles, CA, USA positioning systems was made In the second part was presented the way in which an [20] Convert sensor data to web pages using a Cloud ...
those who wish to write sim-ple tablet programs, programmers who wish to write complex applications that take full ad¬vantage of tab-let capabilities, and programmers who wish to provide tablet ...