Add an option to disable the item "Generate a key pair" when the user register a PKI token, and let users only select a valid certificate from the token.
This would be useful to prevent users being able to register arbitrary tokens with arbitrary keys and, instead, allow registrations only of tokens with e.g. controlled company-issued certificates.

Comments

  • This seems like a good idea and it aligns with our product. We will determine a version when this can be scheduled.