Solved

stunnel expiring certificate

Posted on 2006-06-17
6
847 Views
Last Modified: 2008-02-26
I'm  running SuSE SLES 8 using an stunnel with a certificate about to expire:

stunnel -p /usr/share/ssl/misc/mkcert/lnxcssl1.pem -d 480 -r lnxcbc01:439

I need to setup an stunnel  with both the soon to be expired ssl certificate and the the new certificate,
so that we can wean the applications that use this over the course of the next week.

From what I remember I concatenated the key_file + verisign_cert_file to make my pem file. Verisign sent me a new lnxcssl1.cer file
and i did a  cat lnxcssl1.key lnxcssl1.cert > lnxcssl1.pem to test out the the new certificate, I then created a new stunnel to
this certificate and it appeared to work. How do I set it up so that the groups can use both the expiring and new certifcate.
0
Comment
Question by:galupo
  • 2
6 Comments
 
LVL 51

Accepted Solution

by:
ahoffmann earned 500 total points
Comment Utility
you can only use one cert, IMO
0
 
LVL 51

Expert Comment

by:ahoffmann
Comment Utility
hmm, I guess that my suggestion was correct. You can only have one cert per process, or do I miss something?
I'd vote for PAQ with 0 points
0
 
LVL 27

Expert Comment

by:Tolomir
Comment Utility
@ ahoffmann: agreed to paq it.

Tolomir
0

Featured Post

Get up to 2TB FREE CLOUD per backup license!

An exclusive Black Friday offer just for Expert Exchange audience! Buy any of our top-rated backup solutions & get up to 2TB free cloud per system! Perform local & cloud backup in the same step, and restore instantly—anytime, anywhere. Grab this deal now before it disappears!

Join & Write a Comment

Phishing is at the top of most security top 10 efforts you should be pursuing in 2016 and beyond. If you don't have phishing incorporated into your Security Awareness Program yet, now is the time. Phishers, and the scams they use, are only going to …
Healthcare organizations in the United States must adhere to the guidance of both the HIPAA (Health Insurance Portability and Accountability Act) and HITECH (Health Information Technology for Economic and Clinical Health Act) for securing and protec…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now