You can do this in the config file - I'll leave others to tell you how as I'm a bit rusty on that stuff.
The reason I'm replying is that it is definitely not good form to mark AlternateName extension as critical. Of course it is valid to do that, but why should a relying application be FORCED to parse AlternateName? PS Please don't post in HTML. Dave -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of alan alan Sent: 17 December 2004 05:05 To: [EMAIL PROTECTED] Subject: How to add X509v3 Subject Alternative Name into the cert with openssl? Hi, How to add X509v3 Subject Alternative Name into the cert with openssl? Such as: X509v3 extensions: X509v3 Subject Alternative Name: critical IP Address:192.168.0.188 How to use openssl to realize this? Thanks. Regards. alan. Do You Yahoo!? 注册世界一流品质的雅虎免费电邮 ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
