Versions Compared

Old Version 10

changes.mady.by.user Simon Chang

Saved on

compared with

New Version 11

changes.mady.by.user Simon Chang

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

By default, our recommendation for a typical ACT remote site is to have it submit a Certificate Signing Request (CSR) to the certificate authority (CA) of the ACT tier to which they are joining.  The CA will in turn generate a new certificate for the downstream site, and we will return that certificate, the hub certificate, and the CA certificate of the tier back to the downstream site.  The site will then import the certificates into their shrine . keystore file, and configure their shrine.conf and server.xml to point to the alias entry in the keystore that corresponds to the site.

...