...
CA.newOCSPStatementForSerial_ECDSA <serial number in decimal of the new ECDSA intermediate certificate>
The result of this set of commands are the files needed for CA operation:
| Technology | Certificate | Contains Private Key? | CRL | OCSP |
|---|---|---|---|---|
| RSA | ROOT-RSA/cacert.pem | ROOT-RSA/crl.der // ROOT-RSA/crl.pem | ROOT-RSA/OCSP/<serial>.response.der | |
| ROOT-RSA/certs/N.N./cert-rsa.pem | X | |||
| ECDSA | ROOT-ECDSA/cacert.pem | ROOT-ECDSA/crl.der // ROOT-ECDSA/crl.pem | ROOT-RSA/OCSP/<serial>.response.der | |
| ROOT-ECDSA/certs/N.N./cert-ecdsa.pem | X |
All of these files, but no others, are copied out of the CA environment for further use in operations (e.g. onto a USB stick).
Specific Instructions to make CAT instance a Managed IdP one
...