Misplaced Pages

GnoMint

Article snapshot taken from Wikipedia with creative commons attribution-sharealike license. Give it a read and then ask your questions in the chat. We can research this topic together.
Software tool for managing X.509 certification authorities
This article has multiple issues. Please help improve it or discuss these issues on the talk page. (Learn how and when to remove these messages)
This article relies excessively on references to primary sources. Please improve this article by adding secondary or tertiary sources.
Find sources: "GnoMint" – news · newspapers · books · scholar · JSTOR (November 2012) (Learn how and when to remove this message)
This article includes a list of general references, but it lacks sufficient corresponding inline citations. Please help to improve this article by introducing more precise citations. (November 2012) (Learn how and when to remove this message)
(Learn how and when to remove this message)
gnoMint
Developer(s)David Marín Carreño
Stable release1.3.0 / March 15, 2016 (2016-03-15)
Repository
Operating systemMulti-platform
TypeSecurity software
LicenseGNU General Public License v3
Websitegnomint.sf.net

gnoMint is a free software tool for managing X.509 certification authorities (CAs).

Its purpose is to offer an easy to use interface for creating certification authorities and all related elements including X.509 digital certificates, certificate signing requests (CSRs) and certificate revocation lists (CRLs).

Features

gnoMint has the following features:

  • All the infrastructure needed to keep and run a certification authority is saved in only one file.
  • It's able to create certificate signing requests, allowing to export them to PKCS#8 files, so they can be sent to other CAs.
  • Allows the creation of X.509 certificates, with a usual set of subject-parameters.
  • Can export certificates and private keys to PEM files, so they can be used by external applications. It also allows to export PKCS#12 structures, so the certificates can be imported easily by web and mail clients.
  • The user can establish a set of policies for certificate generation in each one of the existing CAs.
  • gnoMint can import CSRs made by other applications.
  • The certificates can be revoked, with generation of the corresponding CRLs
  • It allows the possibility of keeping the CA private key, or other private keys, in external files or devices (as USB drives)
  • gnoMint is able to manage of a whole hierarchy of CAs, simultaneously, with their respectives certificates.
  • Pre-existing Certification Authorities made by other applications, as OpenSSL or TinyCA, can be imported with all their data.
  • It has a CLI intended for batch certificate creation, or integration with other utilities.

Licence and motivation

gnoMint is licensed under the GNU General Public License.

gnoMint is intended to help all systems and network administrators to deploy a Certification Authority very easily. Its development was started due to the lack of a 'just-works' CA software. According to gnoMint's author, "creating a CA from zero, through open-source command-line utilities, was possible, but was uncomfortable to remember all the necessary parameters. And you had to create a difficult configuration file."

See also

References

  1. "gnoMint". SourceForge. 2016-03-15. Retrieved 2024-07-05.
  2. "gnoMint 1.0.0 released". lwn.net. Retrieved 2024-07-05.

External links

Categories: