These are steps to generate a SSL certificate.
Have openssl installed before
Log with root
1)Create these repositories in a repository
demoCA
demoCA/newcerts
touch demoCA/index.txt
echo 01 > demoCA/serial
2)Create a private key for your server
openssl req -x509 -newkey rsa:1024 -days 3650 -keyout ca.pem -out ca.crt
3)Create a private request file needed to sign
openssl req -newkey rsa:1024 -days 3650 -keyout server.pem -out server.req
note: When to process ask you to "common name" this means the server name or host name
4)Create the server certificat from the request
openssl ca -days 3650 -cert ca.crt -keyfile ca.pem -out server.crt -in server.req
to see the information in the certificate
openssl x509 -noout -text -in serveur.crt
Friday, May 09, 2008
Subscribe to:
Posts (Atom)
Posts
