Configure Red Hat Certificate System to include OCSP Extended Key Usage extensions in the signing certificate

Solution Verified - Updated -

Issue

  • As a user, I want to configure Red Hat Certificate System to include OCSP Extended Key Usage extensions in the root signing certificate in order to satisfy my organization's business requirements. How do I modify the root signing certificate installation profile to include these extensions before running the pkispawn command to begin the installation?

Environment

  • Red Hat Enterprise Linux 7
  • Red Hat Certificate System 9

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content