-
Notifications
You must be signed in to change notification settings - Fork 139
Configuring CA with Sequential Serial Numbers
Endi S. Dewata edited this page Apr 5, 2022
·
2 revisions
By default the CA subsystem is configured with Sequential Serial Numbers. It is possible to switch to Random Serial Numbers v1 or Random Serial Numbers v3.
Warning
|
Switching back from Random Serial Numbers v3 to the Sequential Serial Numbers is not supported. |
Once you enabled Random Serial Numbers v1 in CA, you can revert it back, using following steps:
-
Stop CA
-
Update CA’s
CS.cfg
file by setting:
dbs.enableRandomSerialNumbers=false
-
Start CA
-
After starting the CA enroll two certificates, check the certificate ID will generate serially. To start serial number Server will pick up any Random Number and start from that number.
Tip
|
To find a page in the Wiki, enter the keywords in search field, press Enter, then click Wikis. |