MozillaWiki

CA:SalesforceCommunity: Difference between revisions

Page Discussion

CA:SalesforceCommunity (view source)

Revision as of 21:30, 6 November 2015

273 bytes added ,  6 November 2015
→‎Which intermediate certificate data should CAs add to Salesforce?
Line 60: Line 60:
** Every intermediate certificate (chaining up to a root certificate in Mozilla's program) that is not [[CA:CertificatePolicyV2.1#Technical_Constraints_or_Auditing.2FDisclosure_of_Intermediate_Certificates|Technically Constrained]] via Extended Key Usage and Name Constraint settings.
** Every intermediate certificate (chaining up to a root certificate in Mozilla's program) that is not [[CA:CertificatePolicyV2.1#Technical_Constraints_or_Auditing.2FDisclosure_of_Intermediate_Certificates|Technically Constrained]] via Extended Key Usage and Name Constraint settings.
** Revoked intermediate certificates that [[CA:ImprovingRevocation#When_To_Notify_Mozilla|should be added to OneCRL]]
** Revoked intermediate certificates that [[CA:ImprovingRevocation#When_To_Notify_Mozilla|should be added to OneCRL]]
* CAs do '''not''' need to add records for:
* CAs should '''not''' add records for:
** Intermediate certificates (chaining up to a root certificate in Mozilla's program) that are [[CA:CertificatePolicyV2.1#Technical_Constraints_or_Auditing.2FDisclosure_of_Intermediate_Certificates|Technically Constrained]] via Extended Key Usage and Name Constraint settings.
** Revoked intermediate certificates that [[CA:ImprovingRevocation#When_To_Notify_Mozilla|do not need to be added to OneCRL]]
** Expired intermediate certificates
** Expired intermediate certificates
** Revoked intermediate certificates that [[CA:ImprovingRevocation#When_To_Notify_Mozilla|do not need to be added to OneCRL]]


== Add Intermediate Certificate Data to Salesforce ==
== Add Intermediate Certificate Data to Salesforce ==
Kathleen Wilson
Confirmed users, Administrators
5,526

edits

Retrieved from "https://wiki.mozilla.org/Special:MobileDiff/1104645"