|
|
|
|
|
|
by MattJ100
972 days ago
|
|
|
It's fairly common for people to obtain multiple certificates for different machines or services, so they can be selectively revoked and they don't have to share keys across machines. More use-cases: - You might obtain a new certificate, but deploy it gradually, so you want the old one to remain valid while you do that. - One certificate may cover different sets of domain names. If you have a certificate for "example.com, foo.example.com" and then request a certificate for only "foo.example.com", should the earlier one be revoked? (leaving "example.com" without a certificate). |
|
|