| CPC H04L 63/0823 (2013.01) [H04L 9/3263 (2013.01)] | 20 Claims |
|
1. One or more non-transitory computer-readable media storing instructions that, when executed by one or more hardware processors, cause performance of operations comprising:
generating, in an execution environment of a virtual cloud network, a first certificate bundle comprising a first certificate authority (CA) certificate and a second CA certificate;
executing a first testing process for utilizing a first sandbox sub-environment executing in a first portion of the execution environment to perform a first set of one or more testing operations associated with the first certificate bundle,
wherein while executing the first testing process, the first certificate bundle is yet to be installed in the first portion of the execution environment and a second certificate bundle comprising the second CA certificate is installed in the first portion of the execution environment;
responsive to determining that the first set of one or more testing operations is successful:
initiating installation of the first certificate bundle, including the first CA certificate and the second CA certificate, on a first network entity executing in the first portion of the execution environment,
wherein the first certificate bundle supersedes the second certificate bundle;
executing a second testing process for utilizing a first testing service executing on the first network entity to perform a second set of one or more testing operations associated with the first certificate bundle,
wherein while executing the second testing process, the first CA certificate is yet to be activated in the first portion of the execution environment and the second CA certificate is active in the first portion of the execution environment;
responsive to determining that the second set of one or more testing operations is successful:
initiating activation of the first CA certificate in the first portion of the execution environment at least by causing transmission of a first entity certificate to a second network entity executing in the first portion of the execution environment for authentication against the first CA certificate,
wherein the first entity certificate supersedes a second entity certificate previously utilized by the second network entity for authentication against the second CA certificate.
|