1. Proposed title of this feature request:
[RFE] Reduce validity for SSL Certificates to less than 39 months

2. What is the nature and description of the request?
Reduce validity for SSL Certificates to less than 39 months.

Starting 1 April 2015, Certification Authorities (CAs) are not permitted to issue SSL certificates (issued from a public root) with a validity period greater than 39 months. SSL/TLS certificate maximum validity is three years (39 months) for Domain Validated (DV) and Organization Validated (OV) Certificates. SSL certificates have limited validity periods so that the certificate's holder identity information is re-authenticated more frequently.
When using Custom SSL Certificates, customer will have to replace the certificates each time he is upgrading the Satellite Server.

3. Why does the customer need this? (List the business requirements here)
Starting 1 April 2015, Certification Authorities (CAs) are not permitted to issue SSL certificates (issued from a public root) with a validity period greater than 39 months. SSL/TLS certificate maximum validity is three years (39 months) for Domain Validated (DV) and Organization Validated (OV) Certificates. SSL certificates have limited validity periods so that the certificate's holder identity information is re-authenticated more frequently.
When using Custom SSL Certificates, customer will have to replace the certificates each time he is upgrading the Satellite Server.

4. How would the customer like to achieve this? (List the functional requirements here)
-> Reduce the validity for SSL Certificates to less than 39 months.
-> Not replace the certificates on each upgrade.

5. For each functional requirement listed in question 5, specify how Red Hat and the customer can test to confirm the requirement is successfully implemented.
-> Check functionality internally and then request the customer to do UAT.

6. Is there already an existing RFE upstream or in Red Hat bugzilla?
No

7. Does the customer have any specific timeline dependencies?
As soon as possible

8. Is the sales team involved in this request and do they have any additional input?
No

9. List any affected packages or components.
Self signed SSL Certificates by Red Hat Satellite

10. Would the customer be able to assist in testing this functionality if implemented?
Yes