docs: clarify intermediate certificate creation instructions

author Bruce Momjian <bruce@momjian.us>

Mon, 31 Aug 2020 20:21:03 +0000 (16:21 -0400)

committer Bruce Momjian <bruce@momjian.us>

Mon, 31 Aug 2020 20:21:03 +0000 (16:21 -0400)
author Bruce Momjian <bruce@momjian.us>
Mon, 31 Aug 2020 20:21:03 +0000 (16:21 -0400)
committer Bruce Momjian <bruce@momjian.us>
Mon, 31 Aug 2020 20:21:03 +0000 (16:21 -0400)
diff --git a/doc/src/sgml/runtime.sgml b/doc/src/sgml/runtime.sgml

index c8698898f3256eb5dc5c5113ff30c4c7f2b037e0..a01add94b7fd8a9f4d11b702042ce3ba17f0ccf2 100644 (file)
--- a/doc/src/sgml/runtime.sgml
+++ b/doc/src/sgml/runtime.sgml
@@ -2193,8 +2193,10 @@ pg_dumpall -p 5432 | psql -d postgres -p 5433
     The certificates of <quote>intermediate</quote> certificate authorities
     can also be appended to the file.  Doing this avoids the necessity of
     storing intermediate certificates on clients, assuming the root and
-   intermediate certificates were created with <literal>v3_ca</literal>
-   extensions.  This allows easier expiration of intermediate certificates.
+   intermediate certificates were created with <literal>v3_ca </literal>
+   extensions.  (This sets the certificate's basic constraint of
+   <literal>CA</literal> to <literal>true</literal>.)
+   This allows easier expiration of intermediate certificates.
    </para>
  
    <para>
author	Bruce Momjian <bruce@momjian.us>
	Mon, 31 Aug 2020 20:21:03 +0000 (16:21 -0400)
committer	Bruce Momjian <bruce@momjian.us>
	Mon, 31 Aug 2020 20:21:03 +0000 (16:21 -0400)