Page MenuHomeVyOS Platform

PKI: Support RFC822 (email) names in SAN
Closed, ResolvedPublicFEATURE REQUEST

Description

Add the ability to specific RFC822 (email) names as Subject Alternative Names in x509 certificates generated via the PKI system.
Example of potential implementation below:

vyos@vyos:~$ generate pki certificate self-signed
Enter private key type: [rsa, dsa, ec] (Default: rsa) rsa
...
Do you want to configure Subject Alternative Names? [y/N] y
Enter alternative names in a comma separate list, example: ipv4:1.1.1.1,ipv6:fe80::1,dns:vyos.net,rfc822:user@vyos.net
Enter Subject Alternative Names: rfc822:example@vyos.net,dns:example.vyos.net
Enter how many days certificate will be valid: (Default: 365) 365
...

Details

Version
-
Is it a breaking change?
Perfectly compatible