BYFN Root CA Certificates

Q

Where are BYFN root CA (Certificate Authority) certificates are located?

✍: FYIcenter.com

A

Like all Hyperledger Fabric networks, BYFN is a private and permission based hyperledger network. Access to the network are control PKI (Public Key Infrastructur) technology.

In BYFN, each organization who manages peer nodes acts a root CA (Certificate Authority) to sign and issue X.509 certificates to control its peer nodes and systems/users who wants to interact with it peer nodes.

If your BYFN is obtained from the Hyperledger Fabric Binary Package at http://bit.ly/2ysbOFE, root CA certificates of all organizations are stored in the ./crypto-config sub-directory.

For example, the private key and the public key certificate of the first organization, org1.example.com, are stored in the ./crypto-config/peerOrganizations/org1.example.com/ca sub-directory.

$ cd ~/hyperledger-binaries/fabric-samples/first-network

$ ls -l crypto-config/peerOrganizations/org1.example.com/ca

-rw------- 1 fyicenter 241 Apr  1 02:00 ab90b589...3d0599d0_sk
-rw-rw-r-- 1 fyicenter 863 Apr  1 02:00 ca.org1.example.com-cert.pem

The each root CA signs and issues its first certificate for the default administrator, Admin@org1.example.com, and stores it in

$ cd ~/hyperledger-binaries/fabric-samples/first-network

$ more crypto-config/peerOrganizations/org1.example.com\
   /peers/peer0.org1.example.com/msp/admincerts/Admin@org1.example.com-cert.pem
 
-----BEGIN CERTIFICATE-----
MIICKjCCAdCgAwIBAgIQJaIMpniwRgmBvyIdgOgrsTAKBggqhkjOPQQDAjBzMQsw
....
bOtHwX2tLdc0msnvEKqFvSHNLQJM6jzav3BCJvG2
-----END CERTIFICATE-----

If you decode this certificate, you will see:

Subject: 
   Common Name (CN): Admin@org1.example.com
   Organizational Unit Name (OU): client
   Locality Name (L): San Francisco
   State or Province Name (ST): California
   Country Name (C): US
Issuer: 
   Common Name (CN): ca.org1.example.com
   Organization Name (O): org1.example.com
   Locality Name (L): San Francisco
   State or Province Name (ST): California
   Country Name (C): US

Â

â‡’ BYFN configtx.yaml Configuration File

â‡ "cryptogen" Command - Generate Keys and Certificates

â‡‘ Hyperledger Fabric Sample Networks

â‡‘â‡‘ Hyperledger Tutorials

2020-10-26, 890👍, 0💬

"cryptogen" Command - Generate Keys and Certificates
How to run "cryptogen" command to generate private keys and public certificates to support organizations and users needed for BYFN (Build Your First Network)? You can follow this tutorial to run "cryptogen" command to generate private keys and public certificates to support organizations and users n... 2020-10-26, 1027👍, 0💬

"byfn.sh up" Error - Container Name in Use
Why am I getting the "Cannot create container for service peer0.org1.example.com: b'Conflict." error when running "byfn.sh up" to start up the BYFN Network? You are getting "Cannot create container for service peer0.org1.example.com: b'Conflict." error when running the "byfn.sh up" command, because ... 2020-05-05, 1012👍, 0💬

"configtxgen" Command - Build channel.tx
How to run "configtxgen" command to build a transaction message to create the channel in BYFN (Build Your First Network)? You can follow this tutorial to run "configtxgen" command to build a transaction message to create the channel in BYFN. The "configtxgen" command file is located in the ../bin di... 2020-10-20, 931👍, 0💬

BYFN Containers Running on Docker
What BYFN (Build Your First Network) containers are running on Docker Engine? Once your BYFN is deployed and executed on the Docker Engine, there will be 9 containers running on the Docker Engine: $ cd hyperledger-binaries/fabric-sa mples/first-network$ ./byfn.sh up ... $ docker ps IMAGE COMMAND NAM... 2020-11-11, 902👍, 0💬

BYFN crypto-config.yaml Configuration File
What is the crypto-config.yaml Configuration File used in BYFN (Build Your First Network)? The crypto-config.yaml Configuration File provides settings on how to generate private keys and public certificates for network entities: order and peer organizations. Here is the default copy of crypto-config... 2020-10-26, 901👍, 0💬

BYFN Root CA Certificates
Where are BYFN root CA (Certificate Authority) certificates are located? Like all Hyperledger Fabric networks, BYFN is a private and permission based hyperledger network. Access to the network are control PKI (Public Key Infrastructur) technology. In BYFN, each organization who manages peer nodes ac... 2020-10-26, 891👍, 0💬

"configtxgen" Command - Build *MSPanchors.tx
How to run "configtxgen" command to build a transaction message to define the anchor peer in each organization in BYFN (Build Your First Network)? You can follow this tutorial to run "configtxgen" command to build a transaction message to define the anchor peer in each organization in BYFN. The "con... 2020-10-20, 860👍, 0💬

Build the BYFN Network Manually
How to build the BYFN (Build Your First Network) manually? You build the BYFN network automatically with the "./byfn.sh up" script command. But if you want to learn how to build it manually, you need to complete the following steps: 1. Review and revise crypto-config.yaml configuration file, which c... 2020-10-26, 815👍, 0💬

BYFN docker-compose-cli.yaml Configuration File
What is the docker-compose-cli.yaml Configuration File used in BYFN (Build Your First Network)? The docker-compose-cli.yaml Configuration File provides settings on Docker containers to run the BYFN network. Here is the default copy of docker-compose-cli.yaml provided in BYFN: # SPDX-License-Identifi... 2020-10-20, 801👍, 0💬

All rights in the contents of this web site are reserved by the individual author. fyicenter.com does not guarantee the truthfulness, accuracy, or reliability of any contents.