> I was trying to implement self signed SSL certificates on a server. > The commands I used to generate the certificate are: > > openssl genrsa -out server.key 1024 > openssl req -new -key server.key -x509 -out server.crt > > The whole thing works perfectly, but I have a small problem. The > certificate is valid for a very short period (around a month or so). > I would like the certificate to be valid for maybe around an > year or so.
Use the -days option. openssl req -new -key server.key -x509 -out server.crt -days 365 Also check on default_days setting in your config file. If you use this new CA to sign other certs, this is how long they will be valid for. Regards, David
