...
Info |
---|
You are prompted for the CA properties, including name and password interactively on the keyboard. C=NL O=GEANT CN=eduroam Managed IdP User Authentication CA Gen 1R/1E (R for RSA, E for ECDSA) |
Afterwards, edit again settings/openssl-rsa.cnf and settings/openssl-ecdsa.cnf settings with new URLs for the intermediate (Issuing) CA.
...
CA.generateNewIntermediateCA
Info | ||
---|---|---|
| ||
During the interactive creation, use |
...
C=NL O=GEANT CN=eduroam Managed IdP |
...
User Authentication Issuing CA |
...
Gen 1R/1E (R for RSA, E for ECDSA). |
Immediately after creation, create a new CRL (to assert that there are no revoked certificates at this point in time) and a new OCSP statement for the newly created intermediates:
...