Hi,
I have a question on how to enable automatic revocation of renewed
certificates, *within the renewal window*.
I have an EST workflow.
I found the following options for auto revocation:
when doing enrollment (so not renew!) auto revocation can achieved with
setting:
auto_revoke_existing_certs: 1
reenrollment (renewal) *outside* the renewal window can be done with:
(requires allow_replace: 1)
revoke_on_replace:
reason_code: superseded
Both options above work fine work, except...
They don't work when I do a renewal *inside * the renewal window. Then the
old certificate is not revoked, nor scheduled for revoke.
How can I configure auto revocation when I renew a
certificate (simplereenroll) within the renewal period?
-Harm
_______________________________________________
OpenXPKI-users mailing list
OpenXPKI-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openxpki-users
