Broken_Heart (Adeel) wrote: > Hi all, I had deployed the CA with 365 days, but the certificate > issue by that were valid for days 500. I want to renew my CA > certificate, so that the same CA can be used in future instead > deploying the new one as many of the application have trusted that > CA, so creating new one after the CA get expires will be a headache. > Any solutions please?
Update the list of CAs the application trusts to include a new CA certificate with an extended expire time. Use whatever method the applications support. (There is no standard OpenSSL way to modify what CAs an application trusts. That is outside the scope of what OpenSSL does.) Are these custom applications or standard ones? DS ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
