Menu

Generate a Certificate

OpenSSL includes a command line utility that can be used to perform a variety of cryptographic functions like generating your machine certificate in [CERT].
First you need a RootCA (selfsigned)
// we genrate the private key of the CA:
1. openssl genrsa -des3 -out CA_pvk.pem 1024
// we sign the private to make a certificate of CA
2. openssl -new -x509 -days 365 -key CA_pvk.pem -out CA_crt.pem
// we need the host private key
3. openssl genrsa -des3 -out host_pvk.pem 1024
// we sign the host private from the CA (machine certificate)
4. openssl req -new key host_pvk.pem -out host_csr.pem
5. openssl ca -out host_crt.pem - in host_csr.pem -cert CA_crt.pem -keyfile CA_pvk.pem in this way we get
[CERT]
ROOTCERT=cert\CA_crt.pem
SCERT=cert\host_crt.pem
RSAKEY=cert\host_pvk.pem

Posted by Max Kleiner 2007-12-12

Log in to post a comment.

Want the latest updates on software, tech news, and AI?
Get latest updates about software, tech news, and AI from SourceForge directly in your inbox once a month.