Topic: Signing a CSR
So, I can create a CA owned by us, effectively making us a small CA.
I would like to use it to sign a certificate. Specifically a CSR generated by Wolf, and kept inside a device.
How would I do that in Wolf? ...programmatically.
A standalone device would allow the user to download and install our private CA.
Then they would generate a new cert on the fly which would store in the device and be used to allow HTTPS connections.
A server (in the standalone device) would use the certificate and the browser would verify the signing against it's CA's.
The goal is to avoid loading all CA's to the standalone device and having a business install their official certificate and keys on the device.
I hope I understand this correctly and this makes sense.
<Code shown is not to scale>