Wiki

User Tools

Site Tools

Trace: install_vsftpd_using_text_file_for_virtual_users check_what_opencl_loaders_are_installed count_the_number_of_errors_in_a_range connection_to_wifi_open_network quiescence_search disputed_card_transactions_chargeback create_a_ca_certificate_authority
certificates:create_a_ca_certificate_authority

This is an old revision of the document!

Certificates - Create a CA (Certificate Authority)

openssl genrsa -out myCA.key 2048

This will create an rsa key file named myCA.key that we use to sign the public pem file generated next.

Create a pem file signed with the key: 

openssl req -x509 -new -nodes -key myCA.key -sha256 -days 365 -out myCA.pem

This will prompt you to answer some questions to generate the pem file: 

Country Name (2 letter code) [AU]:**JE**
State or Province Name (full name) [Some-State]:**Jersey**
Locality Name (eg, city) []:**St. Helier**
Organization Name (eg, company) [Internet Widgits Pty Ltd]:**ShareWiz**
Organizational Unit Name (eg, section) []:**IT**
Common Name (e.g. server FQDN or YOUR name) []:**sharewiz.net**
Email Address []:

At this point you should have 2 files: 

myCA.pem
myCA.key

The myCA.pem file is the public key.

ALERT: The myCA.key is the private key; which you do NOT want to share.

Protect the private key!

certificates/create_a_ca_certificate_authority.1586967277.txt.gz · Last modified: 2020/07/15 09:30 (external edit)
Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki