On 7/18/06, Dr. Stephen Henson <[EMAIL PROTECTED]> wrote:
On Tue, Jul 18, 2006, Michael P. Soulier wrote:
> Hello,
>
> If I'm using openssl to manage a CA, and I need to issue a new cert with
> the same CN as a previously issued Cert, is it enough to revoke the
> previous cert with that CN?
>
Note that there is no problem issuing a certificate with the same CN, i.e.
commonName.
I think you mean the same DN. Note that CN is just one (optional) field in the
DN. If the CN fields are the same but other fields differ that's not a
problem.
Ya that's right it is the DN, been a while since I had a reason to
look at it. I'll have to lookup the option to turn that behavior off.
Better than having to null out index.txt every time we sign a
certificate..
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
