Hi all, just want to ask if there is a best practice DANE handling when not using automatism but "normal" 1 year public certificates. Usually 3 1 1 for the actual used certificate is fine. But having a rollover scheme is something I don't fully understand. Should I use the 2 0 1 Trust Anchor of the actual used certificate or should I only publish another 3 1 1 record as soon as I get the next certificate (usually a few days before the first one expires).
Thanks for thoughts Norbert
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ mailop mailing list [email protected] https://list.mailop.org/listinfo/mailop
