Changes between Version 2 and Version 3 of Using_Certificate_Chains
- Timestamp:
- 12/17/10 10:34:18 (13 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
Using_Certificate_Chains
v2 v3 10 10 + SSL client certificate 11 11 }}} 12 The dependency of the "SSL server certificate" on the "sub-CA2" certificate, which in turn depends on the "sub-CA1" certificate which depends on the "root-CA" certificate is what makes this a certificate '''chain'''12 The dependency of the "SSL server certificate" on the "sub-CA2" certificate, which in turn depends on the "sub-CA1" certificate which depends on the "root-CA" certificate is what makes this a certificate. '''chain''' 13 13 14 14 = Certificate chains versus stacked certificates = 15 A certificate chain has a dependency between the different elements. A stacked certificate means that a bunch of certificates have been stacked together . OpenVPN supports both. When using certificates signed by multiple CAs it is often sufficient to simply stack the different CA certificates together:15 A certificate chain has a dependency between the different elements. A stacked certificate means that a bunch of certificates have been stacked together, without any interdependence between them. OpenVPN supports both. When using certificates signed by multiple CAs it is often sufficient to simply stack the different CA certificates together: 16 16 {{{ 17 17 $ cat ca1.crt ca2.crt ca3.crt > stacked.crt