Oliver and Chris, thanks for the info. Then I need another explanation concerning Serial numbers and DNs. I notice that when I renew a request, the new request and certificate will have a new serial number and therefore a new DN. So my newbie question not only concerns OpenCA: Is it possible to renew a certificate without changing the DN info? That is only changing the "not after" field, because, actually, this is the only thing I am really concerned about when renewing a certificate. Do other CA software behave differently with renewals?
Cheers, Pierre > Pierre, > > > So, I would like to know if it is normal behaviour for a CA to be able > > to deliver two certificates with the same information in the DNs even if > > the serial numbers are different. > > yes this is normal as the serial number is in the certificte. I think > you can modify OpenCA via configuration to not put the serial number in > the certificate (search this list as it has been discussed before) and > as the DN should be unique it will not allow the same DNs. > > Chris... ------------------------------------------------------- This SF.Net email is sponsored by Oracle Space Sweepstakes Want to be the first software developer in space? Enter now for the Oracle Space Sweepstakes! http://ads.osdn.com/?ad_id=7412&alloc_id=16344&op=click _______________________________________________ Openca-Users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openca-users
