On 27.03.2014, at 13:32, Walter H. wrote: > Does this mean, you use certificates with a complete chain of at least 4 > certificates? > > - root ca cert. no pathlen > - intermediate ca cert. also no pathlen > - signing ca cert. with pathlen > - end cert
Yes, the expert example does that. > what is here said about the key length? > > my CA uses a root with 4096 bits RSA key; does it make a sense, that > an intermediate or the signing ca has a stronger key than the root CA? I don't think so. Stefan -- Stefan H. Holek ste...@epy.co.at ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
