Difference between revisions of "TLS"
From Vague Hope Wiki
Line 23: | Line 23: | ||
openssl ca -gencrl -keyfile demoCA/private/cakey.pem -cert demoCA/cacert.pem -out cacrl.pem -crldays 30 | openssl ca -gencrl -keyfile demoCA/private/cakey.pem -cert demoCA/cacert.pem -out cacrl.pem -crldays 30 | ||
</pre> | </pre> | ||
+ | |||
+ | == Fields == | ||
+ | C=Country Name (2 letter code) | ||
+ | ST=State or Province Name (full name) | ||
+ | O=Organization Name (eg, company) | ||
+ | OU= | ||
+ | CN= |
Revision as of 11:52, 24 April 2012
Examine
openssl x509 -text -in client.pem openssl rsa -text -in client.pem openssl crl -text -in cacrl.pem
demoCA
/usr/lib/ssl/misc/CA.sh -newca
/usr/lib/ssl/misc/CA.sh -newreq /usr/lib/ssl/misc/CA.sh -sign
openssl req -new -nodes -out client2.req.pem -keyout client2.key.pem -days 365 openssl ca -out client2.cert.pem -days 365 -infiles client2.req.pem
echo 01 > demoCA/crlnumber openssl ca -revoke client.pem -keyfile demoCA/private/cakey.pem -cert demoCA/cacert.pem openssl ca -gencrl -keyfile demoCA/private/cakey.pem -cert demoCA/cacert.pem -out cacrl.pem -crldays 30
Fields
C=Country Name (2 letter code) ST=State or Province Name (full name) O=Organization Name (eg, company) OU= CN=