Intermediate Certificate Expired

Our Self Signed Root certificate does not expire for years, however, our intermediate certificate, which is the default CA in DJIGZo and the certificate that issued all of our individual users' certificates expired at the end of March.

Is there a way for us to renew the default CA intermediate certificate that has expired in DJIGZO so that the encryption certificates for all the users do not need to be recreated?

Thanks,
Roger

[cid:image001.png(a)01D2B78E.20BD4680]<Business & Corporate Lawyers | Howard & Howard;
NOTICE: Information contained in this transmission to the named addressee is proprietary information and is subject to attorney-client privilege and work product confidentiality. If the recipient of this transmission is not the named addressee, the recipient should immediately notify the sender and destroy the information transmitted without making any copy or distribution thereof.

ELECTRONIC SIGNATURE: Nothing contained in this communication is intended to constitute an electronic signature unless a specific statement to the contrary is included in this message.

image001.png

Unfortunately that is not possible with the CA certs generated with
CipherMail. The best thing would be to create a new CA (root and
intermediate) and make sure it's valid for a very long period (for
example 20 years). The existing keys can still be used for decryption in
case some sender still uses the old certificates.

Instead of using the built-in CA, you might consider using an external
CA and create the root and intermediate(s) externally and then import
them into CipherMail. This might give you more flexibility. The built-in
CA is not as feature rich as a full blown CA server.

Kind regards,

Martijn Brinkers

ยทยทยท

On 04/17/2017 09:32 PM, Heater, B. Roger wrote:

Our Self Signed Root certificate does not expire for years, however,
our intermediate certificate, which is the default CA in DJIGZo and
the certificate that issued all of our individual users' certificates
expired at the end of March.

Is there a way for us to renew the default CA intermediate
certificate that has expired in DJIGZO so that the encryption
certificates for all the users do not need to be recreated?

--
CipherMail email encryption

Email encryption with support for S/MIME, OpenPGP, PDF encryption and
secure webmail pull.

Twitter: http://twitter.com/CipherMail