Share via

How to add additional CDP location in certificate?

Clovis Chow 0 Reputation points
2023-07-13T03:08:47.81+00:00

Hello,

I am trying to add another CDP location to my certificates. I have followed this guide to check the checkbox "Include in the CDP extension of issued certificates" in the extensions tab but the CDP location just appends to the first CDP location marked with [1].

How do I add another CDP location such that it becomes [2] instead of append to the back of [1]?

I tried this with AIA and now I have [1] and [2], representing 2 AIA locations.

E.g. for AIA, it is

"[1] Authority Info Access ... URL=<ldap location> ...

[2] Authority Info Access ... URL=<http location> ..."

but for CDP, it is

"[1] CRL Distribution Point ... URL=<ldap location> ... URL=<http location>"

Kindly advise. Thank you.

Windows for business | Windows Client for IT Pros | Directory services | Active Directory
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Anonymous
    2023-09-07T03:36:05.0533333+00:00

    Hello Clovis Chow,

    Thank you for posting in Q&A forum.

    For existing certificate, we cannot add additional AIA or CDP to existing certificate.

    If you want to add additional CDP, you need to add additional CDP on CA Properties\Extension tab, and checkbox "Include in the CDP extension of issued certificates" for every CDP location.

    For example:

    cdp

    After that, when CA issues new certificate to end entities, all these certificates will have additional AIA or CDP you just added.

    Hope the information above is helpful.

    If you have any question or concern, please feel free to let us know.

    Best Regards,
    Daisy Zhou

    ============================================

    If the Answer is helpful, please click "Accept Answer" and upvote it.

    0 comments

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.