Data Archive
- Data Archive 6.5
- All Products
For example:openssl genrsa -des3 -out <your CA key name> <key length>
You are asked for a password that will be the CA password. Then the system asks for the password again. The output of this command, the fileGenerating RSA private key, 2048 bit long modulus ..............++++++ ..........++++++ e is 65537 (0x10001) Enter pass phrase for root-ca.key: Verifying - Enter pass phrase for root-ca.key:
For example:openssl req -new -x509 -days <days of validity> -key <your CA key name> -out <root CA certificate name> -config <config file name>
openssl req -new -x509 -days 3650 -key root-ca.key -out root-ca.crt -config openssl.cnf
Create a new, self-signed X.509 certificate valid for ten years, for the keypair in the file root-ca.key, and place the output in the file root-ca.crt.
Enter pass phrase for root-ca.key: You are about to be asked to enter information that will be incorporated into your certificate request. What you are about to enter is what is called a Distinguished Name or a DN. There are quite a few fields but you can leave some blank For some fields there will be a default value, If you enter '.', the field will be left blank. ----- Country Name (2 letter code) [US]: State or Province Name (full name) [SampleProvince]: Locality Name (eg, city) [Madison]: Organization Name (eg, company) [SampleOrg]: Second Organization Name (eg, company) [Computer Sciences Department]: Organizational Unit Name (eg, section) [INFA_sample Project]: Common Name (eg, YOUR name) []:<Any Name eg: MyRootCA> Email Address []:
cp root-ca.crt INFA_sampleSigningCA1/signing-ca-1.crt cp root-ca.key INFA_sampleSigningCA1/signing-ca-1.key
copy root-ca.crt INFA_sampleSigningCA1\signing-ca-1.crt copy root-ca.key INFA_sampleSigningCA1\signing-ca-1.key