Do I have to renew the CA certificate?
no, you don't need.
What happens if I do not renew the CA certificate?
nothing
Do I have to use "renew with new key"?
in future, never renew CA with same key. Always generate new key.
This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
Hello,
when the migration from CSP and SHA-1 to KSP and SHA-2 finished on a 1-tier-PKI, the CA signs new certificates and CRLs with SHA256.
Do I have to renew the CA certificate?
What happens if I do not renew the CA certificate?
Do I have to use "renew with new key"?
It would be nice if someone could explain his answers a little bit.
Thank you!
Do I have to renew the CA certificate?
no, you don't need.
What happens if I do not renew the CA certificate?
nothing
Do I have to use "renew with new key"?
in future, never renew CA with same key. Always generate new key.