CA is a trusted source that can verify the authenticity of the certificate, and provide assurance that the certificate is really owned by the organization or individual that claims to own it.
openssl library provides all needed for this task. Install it:
apt-get install openssl
cd ~
/usr/lib/ssl/misc/CA.pl -newca
Once you have entered and re-entered your password, CA.plwill collect some information from you about your organization.
If we enter the pass phrase correctly, CA.plwill generate our new certificate and display its contents on the screen.
Using configuration from /usr/lib/ssl/openssl.cnf
Ente...
Creating a certificate is a two-step process: 1. We need to generate the Certificate Request. 2. We need to sign the request with the CA's signature. Let's see these steps in detail. There are a few methods for create certificate. We could use shell command from openssl toolkit and CA.pl script whick ask us about all needed info. In this topic we'll use CA.pl but in topic about self signed certificate we'll use command line for diversity. To generate a new request we will run CA.pl -newreq $ /usr/lib/ssl/misc/CA.pl -newreq Generating a 2048 bit RSA private key .......................................
Published ago by ochirkov
Creating a certificate is a two-step process: 1. We need to generate the Certificate Request. 2. We need to sign the request with the CA's signature. Let's see these steps in detail. There are a few methods for create certificate. We could use shell command from openssl toolkit and CA.pl script whick ask us about all needed info. In this topic we'll use CA.pl but in topic about self signed certificate we'll use command line for diversity. To generate a new request we will run CA.pl -newreq $ /usr/lib/ssl/misc/CA.pl -newreq Generating a 2048 bit RSA private key .......................................
Published ago by ochirkov
Recent articles
More articles >>>
Python
Web development
Review
Linux
Administration
Provisioning
CVS
Windows
AWS
Continuous Integration
NoSql
Logging
Web Servers
FileSystems
Scala
accurev
ansible
apach2
apache
api
application
approaches
architecture
archivation
argparse
arguments
artifactory
automation
awk
aws
backup
bash
batch-scripting
beaver
block
build
built-in
caching
call
captcha
cartridge
case
certificates
cgi
chain
client
cloud
cloudformation
cluster
cmd
coding
collections
command-line
commands
compression
conditionals
conversion
convert
cookbook
copy
counter
cron
crud
css
cut
cygwin
daemon
datatype
date
dd
debpackage
decorator
delattr
deploy
deque
dict
distributed-file-systems
django
DNS
domain
driver
dropbox
dump
elasticcache
elasticsearch
encryption
exit
ext4
extra-tags
failover
file
filename
filters
for
form
format
freetds
functions
gerrit
getattribute
gid
git
globals
glusterfs
hardware
hook
iam
indexing
inheritance
init
install
job-interview
jquery
ldap
linux
list
locals
logging
logs
logstash
lookup
magicmethods
mail
main-menu
metadata
metalogger
mongodb
moosefs
mount
mssql
multiplatform
multithreading
mysql
netcat
nginx
nosql
open-ssh
openldap
openshift
os
packaging
parse
partition
path
pattern
patterns
permissions
pid
pil
pip
pipe
playbook
pool
post
post-commit
processes
production
provisioning
proxy
putty
python
python-mysql
recursively
redirection
redis
register
replication
repr
restore
return
review
rotation
scala
script
search
selenium
server
setattr
settings
setup
shipper
signals
singleton
slots
snapshot
socket
splunk
ssh
ssh-key
ssl
storage
str
string
style
subprocess
sugar
super
switch
syntactic
syntaxhighlighter
systeminfo
tail
tar
templatetags
time
tls
tune2fs
tuple
ubuntu
unicode
unique
unix
unixodbc
usage
usecases
uuid
uwsgi
variable
vars
version
vi
virtualenv
volume
web
web-server
windows
with_items
__getattr__