It can also be used to generate self-signed certificates that can be used for testing purposes or internal usage (more details in Step 3). Use the openssl toolkit, which is available in Blue Coat Reporter 9\utilities\ssl, to generate an RSA Private Key and CSR (Certificate Signing Request). In Windows with Reporter installed, the OpenSSL utility is located in " Program Files\Blue Coat Reporter 9\utilities\ssl" Issuer: C = AU, ST = stateA, L = cityA, O = companyA, OU = sectionA, CN = domain, emailAddress = Signature Algorithm: sha256WithRSAEncryption We can use the openssl command to view the contents of our certificate in plain text: openssl x509 -text -noout -in domain.crtĦ4:1a:ad:0f:83:0f:21:33:ff:ac:9e:e6:a5:ec:28:95:b6:e8:8a:f4 Please enter the following 'extra' attributesĪn important field is “ Common Name,” which should be the exact Fully Qualified Domain Name (FQDN) of our domain. ![]() Organizational Unit Name (eg, section) :sectionAĬommon Name (e.g. Organization Name (eg, company) :companyA State or Province Name (full name) :stateA If you enter '.', the field will be left blank. There are quite a few fields but you can leave some blankįor some fields there will be a default value, What you are about to enter is what is called a Distinguished Name or a DN. You are about to be asked to enter information that will be incorporated ![]() ![]() The output will look like: Enter pass phrase for domain.key: We'll enter our private key password and some CSR information to complete the process. Let's create a CSR ( domain.csr) from our existing private key: openssl req -key domain.key -new -out domain.csr The CSR includes the public key and some additional information (such as organization and country). If we want our certificate signed, we need a certificate signing request (CSR).
0 Comments
Leave a Reply. |