SecurityEngineering/x509Certs: Difference between revisions

Jump to navigation Jump to search

SecurityEngineering/x509Certs (view source)

Revision as of 18:45, 15 August 2014

No change in size ,  15 August 2014
→‎Running your Own CA
Line 39: Line 39:


= Running your Own CA =
= Running your Own CA =
If you are going to have your own CA, we recemmend building 3 certificates: a long term root cert, a medium term intermediate cert, and a short term end-entity cert. This type of hierarchy allows for a relatively simple long term root to be distributed to clients, and some flexibility on the intermediate cert so that you can change parameters based on best practices and security research.
If you are going to have your own CA, we recommend building 3 certificates: a long term root cert, a medium term intermediate cert, and a short term end-entity cert. This type of hierarchy allows for a relatively simple long term root to be distributed to clients, and some flexibility on the intermediate cert so that you can change parameters based on best practices and security research.
== Generate your CA Root ==
== Generate your CA Root ==
Update *.example.com and *.example.net below to match your domains.  
Update *.example.com and *.example.net below to match your domains.  
Bc
Confirmed users
726

edits

Retrieved from "https://wiki.allizom.org/Special:MobileDiff/1006147"

Navigation menu