CA:SalesforceCommunity: Difference between revisions

CA:SalesforceCommunity (view source)

99 bytes added , 10 January 2017

m

Clarification about PEM data

Confirmed users, Administrators

5,526

edits

@@ Line 53: / Line 53: @@
 * CA Community Users can only modify the intermediate certificate records for their CA.
 * The Intermediate certificate records have a Status field that may not be modified by CAs.
-* When [[CA:CommonCADatabase#PEM_Data|PEM data]] is provided, the certificate details in the record may not be modified.
+* The certificate detail fields that are extracted from the [[CA:CommonCADatabase#PEM_Data|PEM data]] cannot be edited. To change those values, the new PEM data needs to be provided via the 'Add/Update PEM Info' button.
 * [[CA:CommonCADatabase#PEM_Data|PEM data]] must be provided for every intermediate certificate (chaining up to a root certificate in Mozilla's program) that is not [[CA:CertificatePolicyV2.1#Technical_Constraints_or_Auditing.2FDisclosure_of_Intermediate_Certificates|Technically Constrained]] via Extended Key Usage and Name Constraint settings. Policy documentation and audit statements must also be provided for these non-technically-constrained intermediate certificates, as per section 10 of [https://www.mozilla.org/en-US/about/governance/policies/security-group/certs/policy/inclusion/ Mozilla's CA Certificate Inclusion Policy].