On Thu, Feb 25, 2016 at 9:24 AM, Eric Covener <covener@xxxxxxxxx> wrote: > On Thu, Feb 25, 2016 at 6:58 AM, Tom Browder <tom.browder@xxxxxxxxx> wrote: >> I have started generating the certs with SHA2, but want to know if can I use >> both systems on the same site while I get my users to transition to their >> new certs. > > Unless I am misunderstanding: > > If you use the same CA, the old certs will remain trusted. > If you use a new CA for the new certs, you can easily trust both CA's. That sounds good, it will be the same CA. My concern was, due to not fully understanding all the steps, that the CA side of things on the server (SSLCACertificateFile) might not be good for the new certs. But, for future reference, how would using two CA's for the same protected directory work? Would the two SSLCACertificateFile files have to be concatenated into one? Thanks for your help, Eric! Best regards, -Tom --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|