Now that Mozilla and other browsers will not Trust a certificate with a validity length longer than a year, FreeIPA should change the default length to match. Currently IPA issues 2 year certificates, which make all the browsers view them as Un-Trusted. This defeats the purpose of cert issuance. _______________________________________________ FreeIPA-users mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/[email protected] Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure
[Freeipa-users] default certificate validity length should be less than 1 year.
Alan Latteri via FreeIPA-users Wed, 24 Feb 2021 10:39:40 -0800
- [Freeipa-users] default certificate va... Alan Latteri via FreeIPA-users
- [Freeipa-users] Re: default certi... Alexander Bokovoy via FreeIPA-users
- [Freeipa-users] Re: default c... Fraser Tweedale via FreeIPA-users
- [Freeipa-users] Re: defau... Alan Latteri via FreeIPA-users
