When you use DXcertgen to create certificates, and do not use a keystore, Dxcertgen does the following:
For DSA certificates, the DSA name is used as the subject of the certificate.
DXHOME/config/ssld/personalities/trusted.pem
Every time that DXcertgen creates a certificate, and does not use a keystore, it creates a new key pair and root certificate, and reissues all the user and DSA certificates based on the new key pair. This can be inconvenient, because you need to distribute the certificates to the client applications.
Copyright © 2011 CA. All rights reserved. | Email CA Technologies about this topic |