I have a 2008 R2 Standalone CA to which I set the signing validity period to 5 years. This is however fine for machinekey certs. I have a requirement to start issuing Client Authentication certificates for a specific web application which TMG will secure against the issued client auth certificate. The question is, if and where in a <request.inf> can I set an attribute that will ask the signing CA to sign for 1 year or 2 etc. and not use the default set on the CA. Is this possible with a Standalone CA?
↧