• Author : Marc Angel


Certificate chain and CRL

This is an addition to the SSL certificate and key management feature added in EOS-4.15.0F. Previously, only certificates directly issued by the trusted CA could be configured in an SSL profile. Certificate chaining allows a trusted CA to issue intermediate certificates that will in turn sign other intermediate CAs or the subject certificate. This hierarchical list of certificate going all the way up to the root CA is called the certificate chain. During the TLS handshake, a client will send its peer the entire certificate chain for verification, and vice-versa. The peer only needs to be configured to trust the...
Continue reading →


Get every new post on this blog delivered to your Inbox.

Join other followers: