Re: [openssl-users] Re: adding certificate policies extension in CSR

Erwann Abalea Mon, 09 Sep 2013 02:49:55 -0700

The requestor is allowed to ask for any extension it wants.

The CA will do its job, ignore those requested extensions, and place thegood ones in the certificate. It can also change the subject namecontained in the certificate.


--
Erwann ABALEA

Le 09/09/2013 11:21, phildoch a écrit :

Oh I see. Can you point to a documentation where it is defined which
extensions a certificate requestor is allowed to add and which should be
added by the CA only?
  Thanks.



--
View this message in context: 
http://openssl.6102.n7.nabble.com/adding-certificate-policies-extension-in-CSR-tp46467p46469.html
Sent from the OpenSSL - User mailing list archive at Nabble.com.
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    openssl-users@openssl.org
Automated List Manager                           majord...@openssl.org


______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    openssl-users@openssl.org
Automated List Manager                           majord...@openssl.org

Re: [openssl-users] Re: adding certificate policies extension in CSR

Reply via email to