BYFN Root CA Certificates

Q

Where are BYFN root CA (Certificate Authority) certificates are located?

✍: FYIcenter.com

A

Like all Hyperledger Fabric networks, BYFN is a private and permission based hyperledger network. Access to the network are control PKI (Public Key Infrastructure) technology.

In BYFN, each organization who manages peer nodes acts a root CA (Certificate Authority) to sign and issue X.509 certificates to control its peer nodes and systems/users who wants to interact with it peer nodes.

If your BYFN is obtained from the Hyperledger Fabric Binary Package at http://bit.ly/2ysbOFE, root CA certificates of all organizations are stored in the ./crypto-config sub-directory.

For example, the private key and the public key certificate of the first organization, org1.example.com, are stored in the ./crypto-config/peerOrganizations/org1.example.com/ca sub-directory.

$ cd ~/hyperledger-binaries/fabric-samples/first-network

$ ls -l crypto-config/peerOrganizations/org1.example.com/ca

-rw------- 1 fyicenter 241 Apr  1 02:00 ab90b589...3d0599d0_sk
-rw-rw-r-- 1 fyicenter 863 Apr  1 02:00 ca.org1.example.com-cert.pem

The each root CA signs and issues its first certificate for the default administrator, Admin@org1.example.com, and stores it in

$ cd ~/hyperledger-binaries/fabric-samples/first-network

$ more crypto-config/peerOrganizations/org1.example.com\
   /peers/peer0.org1.example.com/msp/admincerts/Admin@org1.example.com-cert.pem
 
-----BEGIN CERTIFICATE-----
MIICKjCCAdCgAwIBAgIQJaIMpniwRgmBvyIdgOgrsTAKBggqhkjOPQQDAjBzMQsw
....
bOtHwX2tLdc0msnvEKqFvSHNLQJM6jzav3BCJvG2
-----END CERTIFICATE-----

If you decode this certificate, you will see:

Subject: 
   Common Name (CN): Admin@org1.example.com
   Organizational Unit Name (OU): client
   Locality Name (L): San Francisco
   State or Province Name (ST): California
   Country Name (C): US
Issuer: 
   Common Name (CN): ca.org1.example.com
   Organization Name (O): org1.example.com
   Locality Name (L): San Francisco
   State or Province Name (ST): California
   Country Name (C): US

⇒ BYFN configtx.yaml Configuration File

⇐ "cryptogen" Command - Generate Keys and Certificates

⇑ BYFN (Build Your First Network)

⇑⇑ Hyperledger Tutorials

2023-07-20, ∼1811🔥, 1💬

"configtxgen" Command - Build genesis.block
How to run "configtxgen" command to build the orderer genesis block for BYFN (Build Your First Network)? You can follow this tutorial to run "configtxgen" command to build Orderer Genesis Block for BYFN. The "configtxgen" command file is located in the ../bin directory. It takes the configtx.yaml fi... 2020-10-20, ∼1822🔥, 0💬

BYFN Root CA Certificates
Where are BYFN root CA (Certificate Authority) certificates are located? Like all Hyperledger Fabric networks, BYFN is a private and permission based hyperledger network. Access to the network are control PKI (Public Key Infrastructure) technology. In BYFN, each organization who manages peer nodes a... 2023-07-20, ∼1812🔥, 1💬

💬 2023-07-20 mohsin: How can i register ad enroll user usig msp and ca

"cryptogen" Command - Generate Keys and Certificates
How to run "cryptogen" command to generate private keys and public certificates to support organizations and users needed for BYFN (Build Your First Network)? You can follow this tutorial to run "cryptogen" command to generate private keys and public certificates to support organizations and users n... 2020-10-26, ∼1798🔥, 0💬

"byfn.sh up" Error - Container Name in Use
Why am I getting the "Cannot create container for service peer0.org1.example.com: b'Conflict." error when running "byfn.sh up" to start up the BYFN Network? You are getting "Cannot create container for service peer0.org1.example.com: b'Conflict." error when running the "byfn.sh up" command, because ... 2020-05-05, ∼1707🔥, 0💬

BYFN Containers Running on Docker
What BYFN (Build Your First Network) containers are running on Docker Engine? Once your BYFN is deployed and executed on the Docker Engine, there will be 9 containers running on the Docker Engine: $ cd hyperledger-binaries/fabric-sa mples/first-network$ ./byfn.sh up ... $ docker ps IMAGE COMMAND NAM... 2020-11-11, ∼1610🔥, 0💬

"configtxgen" Command - Build channel.tx
How to run "configtxgen" command to build a transaction message to create the channel in BYFN (Build Your First Network)? You can follow this tutorial to run "configtxgen" command to build a transaction message to create the channel in BYFN. The "configtxgen" command file is located in the ../bin di... 2020-10-20, ∼1555🔥, 0💬

BYFN configtx.yaml Configuration File
What is the configtx.yaml Configuration File used in BYFN (Build Your First Network)? The configtx.yaml Configuration File provides settings on how the BYFN network should be created. Here is the default copy of crypto-config.yaml provided in BYFN: # Copyright IBM Corp. All Rights Reserved. --- ####... 2020-10-26, ∼1459🔥, 0💬

Build the BYFN Network Manually
How to build the BYFN (Build Your First Network) manually? You build the BYFN network automatically with the "./byfn.sh up" script command. But if you want to learn how to build it manually, you need to complete the following steps: 1. Review and revise crypto-config.yaml configuration file, which c... 2020-10-26, ∼1443🔥, 0💬

"configtxgen" Command - Build *MSPanchors.tx
How to run "configtxgen" command to build a transaction message to define the anchor peer in each organization in BYFN (Build Your First Network)? You can follow this tutorial to run "configtxgen" command to build a transaction message to define the anchor peer in each organization in BYFN. The "con... 2020-10-20, ∼1435🔥, 0💬

All rights in the contents of this web site are reserved by the individual author. fyicenter.com does not guarantee the truthfulness, accuracy, or reliability of any contents.