On Tuesday 13. August 2013 06:17:35 redpath wrote:
I have a best practices question on CA management for signing.
I have created CA signing cert and issue all other certs using this
CA to sign them.
1) I noticed that many CA examples set a term of 3650 days, is this commmon
practice
How
Thanks and as for the last question number (5) I meant I simply replace the
SSL cert and assume there
will be a challenge to accept the new certificate by a browser? I revoke the
old one SSL cert.
--
View this message in context:
http://openssl.6102.n7.nabble.com/Best-Practices-CA-manage
On Wednesday 14. August 2013 04:10:23 you wrote:
Thanks and as for the last question number (5) I meant I simply replace the
SSL cert and assume there
will be a challenge to accept the new certificate by a browser? I revoke the
old one SSL cert.
I still don't get it. If you have revoked your
On 08/14/13 09:08, Mat Arge wrote:
On Wednesday 14. August 2013 04:10:23 you wrote:
Thanks and as for the last question number (5) I meant I simply replace the
SSL cert and assume there
will be a challenge to accept the new certificate by a browser? I revoke the
old one SSL cert.
I still don't
, but what abut the OCSP signing cert do I create a a new
one there with the
new CA?
5) I have an SSL cert on the current CA do I create a new one with the new
CA and simply replace the
the old one.
--
View this message in context:
http://openssl.6102.n7.nabble.com/Best-Practices-CA-manage
