My OperaThe My Opera forums have been replaced with forums.opera.com. Please head over there to discuss Opera's products and features
See the new ForumsYou need to be logged in to post in the forums. If you do not have an account, please sign up first.
How to update a client certificate?
I'm using CAcert client certificate for a longer while now, and lately it expired. I renewed it and tried the import the new but with no success.When trying to import the certificate as-is:
A different client certificate is already installed for this key. Installation failed.
If I remove the old one first and try to import it afterwards, the old one reappears on the list and the same error appears. However, after restarting Opera, the old certificate no longer exists.
When trying to import the updated certificate then, Opera says that I do not have the private key for it anymore.
So, how can I update the client certificate without replacing the private key?
Those services will (or should) either be relying on the signing CA and the the subject name in the certificate, or be configured for the valid binary version of the certificate. In the first case, obtaining a new certificate with the same required details from the same CA should be enough, in the second once the certificate is expired a new certificate have to be configured. In none of these scenarios does the update require the new certificate to be issued to the same private/public key pair as the previous certificate, in fact, it is expected that the key is new.
As for losing the previously configured certificate I can only recommend that you see http://en.wikipedia.org/wiki/Backup
As for losing the previously configured certificate I can only recommend that you see http://en.wikipedia.org/wiki/Backup
Sincerely,
Yngve N. Pettersen
Yngve N. Pettersen
Forums » General Opera topics » Security and privacy in Opera