short-stack
Explorer
- Joined
- Feb 28, 2017
- Messages
- 80
So in OSX Catalina they are restricting all TLS certificate lifetimes to 825 days or fewer(https://support.apple.com/en-us/HT210176) . I'm playing with the 11.3 nightly updates (haven't tested it in 11.2u6 yet), and when signing a new certificate with a CA that I run on FreeNAS, it does not let me set a lifetime for certificates in the sigining request and it defaults to 10 years which is not deemed as valid by Chrome or OSx anymore.
Am I missing something? Or do I need to put in a request to add in certificate lifetime in CSRs?
Am I missing something? Or do I need to put in a request to add in certificate lifetime in CSRs?