As above, we were planning to do the following:
- Access our HSM (Luna SA)
- Generate CSR
- Send CSR to 3rd Party CA
- Add critical key usage of Non Repudiation on 3rd Parties portal
- Send the now signed CSR (public key to our trading partner) which has the key usage
Does it matter if I have not added the key usage attribute during the CSR generation on the HSM as I cannot find a way to add the key usage with the HSM client software?
Regards