pki.auto_gen_pki¶

Manages the auto-generated local PKI.

Attributes¶

`UNIQUE_NAME_PREFIX`
`DOMAIN_NAME_PREFIX`
`ISSUING_CA_NAME_MIN_PARTS`

Classes¶

AutoGenPki

Handles enabling and disabling of auto-generated PKI.

Module Contents¶

pki.auto_gen_pki.UNIQUE_NAME_PREFIX = 'AutoGenPKI_Issuing_CA'[source]¶

pki.auto_gen_pki.DOMAIN_NAME_PREFIX = 'AutoGenPKI'[source]¶

pki.auto_gen_pki.ISSUING_CA_NAME_MIN_PARTS = 4[source]¶

class pki.auto_gen_pki.AutoGenPki[source]¶

Bases: trustpoint.logger.LoggerMixin

Handles enabling and disabling of auto-generated PKI.

_lock: threading.Lock[source]¶

classmethod get_auto_gen_pki(key_alg=None)[source]¶

Retrieves the auto-generated PKI Issuing CA, if it exists.

Parameters:: key_alg (pki.util.keys.AutoGenPkiKeyAlgorithm | None)
Return type:: pki.models.CaModel | None

classmethod enable_auto_gen_pki(key_alg)[source]¶

Enables the auto-generated PKI.

Parameters:: key_alg (pki.util.keys.AutoGenPkiKeyAlgorithm)
Return type:: None

classmethod disable_auto_gen_pki()[source]¶

Disables the auto-generated PKI.

Note: This will disable the currently active auto-generated PKI (any key algorithm). PKCS#11 keys are NOT destroyed - each Issuing CA has a unique name to avoid conflicts.

Return type:: None