Song Yi wrote:
>
> Hi,
Hi,
> Somebody told me that just resend the user's previous request stored in
> server, but I think CA can't sign two cert with the same DN!
> So, how to renew a cert? Should I revoke the cert first?
If the certificate is to be renewed then it should be expired. If the previous
certificate is expired than it is pretty legal to sign a new one with the
same DN. If you want issue the new certificate before the expiration date
of the old one you have to revoke it - but I don't think it is a good policy
as it is not needed.
C'you,
Massimiliano Pala ([EMAIL PROTECTED])
S/MIME Cryptographic Signature
