Building an OpenSSL Certificate Authority - Configuring CRL and OCSP

Certificate Revocation Lists We completed reviewing our PKI design considerations and created root and intermediary certificates completeing our two-tier certificate authority. Now we'll create ce...

Updated Jun 05, 2023

Version 2.0

series-building-an-openssl-certificate-authority

Chase_Abbott

Admin

I do stuff.

View Profile

RWood_383320

Nimbostratus

Feb 08, 2019

When you create the OCSP key & certificate, your sample code uses the openssl_server.cnf (which you don't introduce until the next article) but when you sign the certificate you use the openssl_intermediate.cnf.

Does it matter if you switch between the two? Is there that much difference between the two config files?

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

Building an OpenSSL Certificate Authority - Configuring CRL and OCSP

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS