Page History
Table of Contents |
---|
Anchor | ||||
---|---|---|---|---|
|
The first step includes to create the signing-ca.key
private key file and the signing-ca.crt
self-signed certificate file for the Signing CA both in PEM format. This step is performed just once.
...
Country Name
: a 2 letter country code is expected as stated for example with https://en.wikipedia.org/wiki/ISO_3166-1_alpha-2State or Province Name
: the name of a state is expectedLocality Name
: the name of a city is expectedOrganization Name
: arbitrary input is allowedOrganizational Unit Name
: arbitrary input is allowedCommon Name
: an arbitrary name can be chosen as the name of the Root CAEmail Address
: empty input is allowed
Anchor | ||||
---|---|---|---|---|
|
For a new signing certificate the steps include to create a private key and Certificate Signing Request (CSR). The resulting signing certificate will be signed by the Signing CA.
...
Code Block | ||||
---|---|---|---|---|
| ||||
[ req ] prompt = no distinguished_name = standard dn [ standard dn ] commonName = signing countryName = DE localityName = Berlin organizationName = SOS organizationalUnitName = IT stateOrProvinceName = Berlin [ standard exts ] keyUsage = critical, nonRepudiation, digitalSignature # see x509v3_config for other extensions |
Resources
Overview
Content Tools