• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 888
  • Last Modified:

stunnel expiring certificate

I'm  running SuSE SLES 8 using an stunnel with a certificate about to expire:

stunnel -p /usr/share/ssl/misc/mkcert/lnxcssl1.pem -d 480 -r lnxcbc01:439

I need to setup an stunnel  with both the soon to be expired ssl certificate and the the new certificate,
so that we can wean the applications that use this over the course of the next week.

From what I remember I concatenated the key_file + verisign_cert_file to make my pem file. Verisign sent me a new lnxcssl1.cer file
and i did a  cat lnxcssl1.key lnxcssl1.cert > lnxcssl1.pem to test out the the new certificate, I then created a new stunnel to
this certificate and it appeared to work. How do I set it up so that the groups can use both the expiring and new certifcate.
0
galupo
Asked:
galupo
  • 2
1 Solution
 
ahoffmannCommented:
you can only use one cert, IMO
0
 
ahoffmannCommented:
hmm, I guess that my suggestion was correct. You can only have one cert per process, or do I miss something?
I'd vote for PAQ with 0 points
0
 
TolomirAdministratorCommented:
@ ahoffmann: agreed to paq it.

Tolomir
0

Featured Post

What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now