Is there something I could add to the following commands to change the
default time a CA is good for? The ones I created are good for only 30
days. I would like to have them be good for 1825 days.
To create the CA.pem and privkey.pem
openssl req -out CA.pem -new -x509
To sign the server
Chris,
Thanks..
Brandon
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]] On Behalf Of Chris Cleeland
Sent: Tuesday, May 21, 2002 11:27 AM
To: [EMAIL PROTECTED]
Subject: Re: [openssl-users] Setting 5 year validity period.
On Tue, 21 May 2002, Brandon Amundson
jibberish that MS does not like and installed it
as a server cert.
Am I missing something? Has anyone seen the error on the 3rd line?
Thanks..
Brandon Amundson
BBN Technologies
LAB: 703 284 8189
[EMAIL PROTECTED]
__
OpenSSL Project
When you run CA.pl -newca this will be created for you. You can change
demo to anything you want. Their may be another reference to demo in the
CA.pl script, I cannot remember. If so, change it their also..
Brandon
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]
Title: Message
Howard,
I
found a pretty good write up for doing this. Here it
is.
Brandon
SSL
Certificates HOWTO
Franck
Martin
Revision
History
Revision
v0.1
2001-11-18
Revised by:
fm
A first hand approach on how to manage a certificate authority (CA),
andissue or sign
I would like to create another CA on my system and use another
openssl.cnf file so I can specify another location to store the new
certs and also to use another policy. I am using ./CA.pl -newca to
create the CA but it keeps referencing the /usr/local/ssl/openssl.cnf
file. How can I tell CA.pl
=\JavaScript\window.location=\http://your.site.here\;/
script;
print HtmlBot;
}
Brandon Amundson
BBN Technologies
LAB: 703 284 8189
[EMAIL PROTECTED]
__
OpenSSL Project http://www.openssl.org
User
in Advance, Again..
Brandon
Brandon Amundson
BBN Technologies
LAB: 703 284 8189
[EMAIL PROTECTED]
__
OpenSSL Project http://www.openssl.org
User Support Mailing List
Subject: Troubles Creating a Certificate for IIS
Currently our setup consists of a Linux web server running apache. Part of
the site is restricted through the use of SSL and client certificates. We
have a self-signed root certificate, created with OpenSSL, and a server
certificate signed by
:
0B0F9E1C622CE7CF0090411AF59DFA53062DC2BDA1929B2E210204753FDFD6E6F60ADB54D6C4
BD38B4C85737C8AA62
D9
Key-Arg : None
Start Time: 1015519547
Timeout : 300 (sec)
Verify return code: 21 (unable to verify the first ce
Brandon Amundson
BBN Technologies
LAB: 703 284 8189
[EMAIL PROTECTED
cause. Any thoughts?
Brandon Amundson
[EMAIL PROTECTED]
__
OpenSSL Project http://www.openssl.org
User Support Mailing List[EMAIL PROTECTED]
Automated List Manager
11 matches
Mail list logo