On Fri, Dec 17, 2004, alan alan wrote:
> Hi,
>
> How to add X509v3 Subject Alternative Name into the cert with openssl?
> Such as:
> X509v3 extensions:
> X509v3 Subject Alternative Name: critical
> IP Address:192.168.0.188
>
> How to use openssl to realize this?
> Than
You can do this in the config file - I'll leave others to tell you how as
I'm a bit rusty on that stuff.
The reason I'm replying is that it is definitely not good form to mark
AlternateName extension as critical. Of course it is valid to do that, but
why should a relying application be FORCED to