Hi Nuno,
Some questions about renew a certificate. 1. It's possible a user to request a renew of is certificate in public interface ?
No
2. And a user can authenticate itself in public interface for request a renew with is certificate ? (this way the RA do not need to check that is a valid "person").
No
This is a configuration problem - you must either put the Certificate Serial in the DN or disable the "unique_dn" feature. Both is found in the server/*.conf files3. When i try to renew a certificate in CA (using the same request as for the initial certificate), i must first revoke the certificate. It is possible that CA can make this automatically ?
Oliver
-- Diese Nachricht wurde digital unterschrieben oliwel's public key: http://www.oliwel.de/oliwel.crt Basiszertifikat: http://www.ldv.ei.tum.de/page72
smime.p7s
Description: S/MIME Cryptographic Signature
