Re: Change default certificate duration ?


we have a root CA and every certificate request has a validity period of 1 year only.

Please could you tell me how can I change this default value ?


Found ;)

Another little question please.

This Root Ca will have a 20 years validity period (I know it's a long time :D)

Which value should be nice for the certificate issued by this CA ?
I know that I don't have to define a validity period larger than 20 years, right ?

Something like 15 years is ok ? (It's only for 3 servers in our LAN)