Certificates issued after July 1st 2019 with a validity period of greater then 825 days are going to give you a headache with the upcoming release of iOS-13, macOS-10.15 and Android-Q. Additionally, the DNS will be required in the Subject Alternate Name (SAN) extension even if the DNS matches the common name. You need to take a proactive look at your environment if using iOS and Android devices. System Manager defaults may have been changed. The validity period for certificates has changed in the CA Browser Forum spec and currently sits at 27 months.. As all vendors are becoming more security conscious they are aligning policies with public CA requirements. This may have an impact on your internal Certificate Authorities including System Manager.
Red Flag Submitted
Thank you for helping keep Tek-Tips Forums free from inappropriate posts. The Tek-Tips staff will check this out and take appropriate action.
Reply To This Thread
Posting in the Tek-Tips forums is a member-only feature.