... | ... | @@ -42,7 +42,7 @@ Examples of configuration extract for certificate validation: |
|
|
```xml
|
|
|
<ApplicationCertificates>
|
|
|
<ServerCertificate path="/certs/server/my_server_cert.der"/>
|
|
|
<ServerKey path="/cert/server/my_server_key/my_server_key.pem"/>
|
|
|
<ServerKey path="/cert/server/my_server_key/my_server_key.pem" encrypted=true/> <!-- encrypted=true to specify if the server private key is encrypted with AES-256-CBC-->
|
|
|
<TrustedIssuers>
|
|
|
<TrustedIssuer root="true" cert_path="/certs/PKI/trusted/myCompanyCA.der"
|
|
|
revocation_list_path="/certs/PKI/revoked/myCompanyCRL.der"/>
|
... | ... | @@ -53,7 +53,7 @@ Examples of configuration extract for certificate validation: |
|
|
```xml
|
|
|
<ApplicationCertificates>
|
|
|
<ServerCertificate path="/certs/server/my_server_cert.der"/>
|
|
|
<ServerKey path="/cert/server/my_server_key/my_server_key.pem"/>
|
|
|
<ServerKey path="/cert/server/my_server_key/my_server_key.pem" encrypted=true/> <!-- encrypted=true to specify if the server private key is encrypted with AES-256-CBC-->
|
|
|
<TrustedIssuers>
|
|
|
<!-- Intermediate CAs shall be provided in the order child to parent to be verified by default PKI -->
|
|
|
<TrustedIssuer root="false" cert_path="/certs/PKI/trusted/child2CA.der"
|
... | ... | @@ -73,7 +73,7 @@ Note 2: Trusted intermediate CAs may also be defined as root CA in this configur |
|
|
```xml
|
|
|
<ApplicationCertificates>
|
|
|
<ServerCertificate path="/certs/server/my_server_cert.der"/>
|
|
|
<ServerKey path="/cert/server/my_server_key/my_server_key.pem"/>
|
|
|
<ServerKey path="/cert/server/my_server_key/my_server_key.pem" encrypted=true/> <!-- encrypted=true to specify if the server private key is encrypted with AES-256-CBC-->
|
|
|
<IssuedCertificates>
|
|
|
<IssuedCertificate path="/certs/issued/myClient1CA.der"/>
|
|
|
<IssuedCertificate path="/certs/issued/myClient2CA.der"/>
|
... | ... | @@ -85,7 +85,7 @@ Note 2: Trusted intermediate CAs may also be defined as root CA in this configur |
|
|
```xml
|
|
|
<ApplicationCertificates>
|
|
|
<ServerCertificate path="/certs/server/my_server_cert.der"/>
|
|
|
<ServerKey path="/cert/server/my_server_key/my_server_key.pem"/>
|
|
|
<ServerKey path="/cert/server/my_server_key/my_server_key.pem" encrypted=true/> <!-- encrypted=true to specify if the server private key is encrypted with AES-256-CBC-->
|
|
|
<TrustedIssuers>
|
|
|
<TrustedIssuer root="true" cert_path="/certs/PKI/trusted/rootCA.der"
|
|
|
revocation_list_path="/certs/PKI/revoked/rootCRL.der"/>
|
... | ... | |