Thank you!!! Just generated a 4096 bit key via
usr/libexec/nethserver/pki-genkey... I removed the old NSRV key and the certificate (I don't use them anyway...).
However, I have don't know how to use the new NSRV key for signing a certificate for the certificate authority. ` /usr/libexec/nethserver/pki-gencrt -s
pki-gencrt: Generate NethServer default certificate
from OrganizationContact key in configuration
pki-gencrt [-s] [-f ] [-h]
-s Print the certificate subject line
-f Set output to (Default is /etc/pki/tls/certs/NSRV.crt)
-h this help
[root@assa ~ ]# pki-genkey -s
-bash: pki-genkey: command not found`
of course, I can do it by hand, but the script looks good in principle... do you have any idea what I do wrongly?