Feature Request: Use Windows certificate stores for NRPE


#1

I have an enterprise Windows CA that’s already doing a good job of creating and distributing computer certificates to my Windows and Linux servers.

At least on the Windows servers, what would it take to have NSCP just use the built-in Windows certificate handling functions to use the certificates my servers already have?

This seems like a much more secure posture than duplicating work and storing private keys in the file system, or else sharing the same keys among all servers and/or maintaining a separate CA via OpenSSL.