我已经向设备发送了带有SCEP有效载荷的配置文件。当设备下载此配置文件时,它应该连接到我的Java SCEP服务器,并以PKCS10形式将CSR写入其OutputStream。然而,当我打印流的内容时,我得到一堆乱码;我知道请求应该以-----BEGIN CERTIFICATE request -----开始,并以----- end CERTIFICATE request -----结束,但事实并非如此。以下是SCEP有效载荷:
<dict>
<key>PayloadContent</key>
<dict>
<key>Key Type</key>
<string>RSA</string>
<key>Key Usage</key>
<integer>0</integer>
<key>Keysize</key>
<integer>1024</integer>
<key>Name</key>
<string>CA-SCEP</string>
<key>Subject</key>
<array/>
<key>URL</key>
<string>https://myserver.example.com </string>
</dict>
<key>PayloadDescription</key>
<string>Configures SCEP</string>
<key>PayloadDisplayName</key>
<string>SCEP (CA-SCEP)</string>
<key>PayloadIdentifier</key>
<string>com.Example.rdesirazu.SCEP</string>
<key>PayloadOrganization</key>
<string>Example</string>
<key>PayloadType</key>
<string>com.apple.security.scep</string>
<key>PayloadUUID</key>
<string>5C125B3C-4427-49CE-980B-21FC1254D506</string>
<key>PayloadVersion</key>
<integer>1</integer>
</dict>
不,你永远不会得到任何接近你期望的SCEP。这些是你最好的朋友:
-
http://www.cisco.com/c/en/us/support/docs/security - vpn/public关键基础设施- pki/116167 technote连蛋白- 00. - html
https://github.com/jscep/jscep/blob/master/src/main/java/org/jscep/server/ScepServlet.java