Add preliminary dynamically generated CRLs on fetching CA CRL

2026-01-08 23:18:05 -05:00 · 2024-05-30 15:45:34 -07:00
parent 45fdd4ebc2
commit 2937a46943
25 changed files with 560 additions and 84 deletions
--- a/docs/documentation/platform/pki/certificates.mdx
+++ b/docs/documentation/platform/pki/certificates.mdx
@@ -66,3 +66,14 @@ In the following steps, we explore how to issue a X.509 certificate under a CA u
    </Note>
  </Step>
 </Steps>
+
+## FAQ
+
+<AccordionGroup>
+  <Accordion title="What is the workflow for renewing a certificate?">
+    To renew a certificate, you have to issue a new certificate from the same CA
+    with the same common name as the old certificate. The original certificate
+    will continue to be valid through its original TTL unless explicitly
+    revoked.
+  </Accordion>
+</AccordionGroup>