Re: [keycloak-dev] Keycloak realm specific Certificate Management System

----- Original Message ----- > From: "Bill Burke" <bburke(a)redhat.com&gt; > To: keycloak-dev(a)lists.jboss.org > Sent: Tuesday, February 17, 2015 3:58:50 PM > Subject: Re: [keycloak-dev] Keycloak realm specific Certificate Management System > > I think that many companies will want to manage keypairs/certificates > themselves. I'm thinking that we'll want to have an option for users to > set up client-certs themselves. For example, think of OTP. We have a > switch that requires the user to set up OTP when then log in. We could > provide the same for client certs where the user uploads their > certificate the first time they log in. Aren't certs just for clients, and so wouldn't they upload/generate certs for an app through the admin console?