Re: [Pki-users] Renew PKI Administrator (caadmin) certificate
For issuing the CA admin certificate, CA uses the dual-use user certificate
profile. First disable that profile via the agent interface and login to
the PKIconsole. Go to the causerCert profile (i cant remember the exact
name) and change the validity default parameter constraint.
to renew, by default it should be within the renewal grace period.
On Mon, Mar 30, 2015 at 7:11 AM, Jain, Mahendra <Majain(a)verisign.com> wrote:
Correction: I meant, How can it be renewed for more than 2 years
(say 5
years)?
From: <Jain>, "Jain, Mahendra" <majain(a)verisign.com>
Date: Sunday, March 29, 2015 at 9:07 PM
To: "pki-users(a)redhat.com" <pki-users(a)redhat.com>
Subject: [Pki-users] Renew PKI Administrator (caadmin) certificate
Hello All,
When I install the Dogtag Certificate System, the installation creates
default PKI Administrator user (caadmin) and it's certificate expires in 2
years.
How do I renew the certificate for the PKI Administrator user?
Thanks,
Mahendra
"This message (including any attachments) is intended only for the use of
the individual or entity to which it is addressed, and may contain
information that is non-public, proprietary, privileged, confidential and
exempt from disclosure under applicable law or may be constituted as
attorney work product. If you are not the intended recipient, you are
hereby notified that any use, dissemination, distribution, or copying of
this communication is strictly prohibited. If you have received this
message in error, notify sender immediately and delete this message
immediately."
_______________________________________________
Pki-users mailing list
Pki-users(a)redhat.com
https://www.redhat.com/mailman/listinfo/pki-users
--
Best Regards,
Nalinda
Attachments:
- attachment.html (text/html — 3.5 KB)