Building an OpenSSL Certificate Authority - Configuring CRL and OCSP

Certificate Revocation Lists We completed reviewing our PKI design considerations and created root and intermediary certificates completeing our two-tier certificate authority. Now we'll create ce...

Updated Jun 06, 2023

Version 2.0

series-building-an-openssl-certificate-authority

Chase_Abbott

Employee

Joined September 17, 2008

View Profile

RWood_383320

Nimbostratus

Feb 08, 2019

When you create the OCSP key & certificate, your sample code uses the openssl_server.cnf (which you don't introduce until the next article) but when you sign the certificate you use the openssl_intermediate.cnf.

Does it matter if you switch between the two? Is there that much difference between the two config files?

Building an OpenSSL Certificate Authority - Configuring CRL and OCSP

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS