Difference between revisions of "TLS"

From Vague Hope Wiki
Jump to: navigation, search
Line 23: Line 23:
 
openssl ca -gencrl -keyfile demoCA/private/cakey.pem -cert demoCA/cacert.pem -out cacrl.pem -crldays 30
 
openssl ca -gencrl -keyfile demoCA/private/cakey.pem -cert demoCA/cacert.pem -out cacrl.pem -crldays 30
 
</pre>
 
</pre>
 +
 +
== Fields ==
 +
C=Country Name (2 letter code)
 +
ST=State or Province Name (full name)
 +
O=Organization Name (eg, company)
 +
OU=
 +
CN=

Revision as of 11:52, 24 April 2012

Examine

openssl x509 -text -in client.pem
openssl rsa -text -in client.pem
openssl crl -text -in cacrl.pem

demoCA

/usr/lib/ssl/misc/CA.sh -newca
/usr/lib/ssl/misc/CA.sh -newreq
/usr/lib/ssl/misc/CA.sh -sign
openssl req -new -nodes -out client2.req.pem -keyout client2.key.pem -days 365
openssl ca -out client2.cert.pem -days 365 -infiles client2.req.pem
echo 01 > demoCA/crlnumber
openssl ca -revoke client.pem -keyfile demoCA/private/cakey.pem -cert demoCA/cacert.pem
openssl ca -gencrl -keyfile demoCA/private/cakey.pem -cert demoCA/cacert.pem -out cacrl.pem -crldays 30

Fields

C=Country Name (2 letter code) ST=State or Province Name (full name) O=Organization Name (eg, company) OU= CN=