Help with issuing self signed certificates
- From: Asi <asi.lev@xxxxxxxxx>
- Date: Wed, 10 Dec 2008 01:16:43 -0800 (PST)
Hey guys,
I try to understand something about self signed certificates.
I generate a RSA key using openSSL.
Than I sign the key using the command:
openssl req -new -x509 -nodes -sha -days 365 -key key.pem -out
keyca.pem
my questions please:
1. does the new keyca.pem replaces the original key.pem file in my TLS
Server configuration Or do I need to configure both?
2. How do I make the clients trust my CA? I understand I need to
install the CA's public key for that. How do I create / find it from
openSSL?
This is a test setup, and I have full control on server AND clients
configurations.
I may have some bad assumptions on TLS. Please correct me if that's
true.
Thanks,
Asi.
.
- Follow-Ups:
- Re: Help with issuing self signed certificates
- From: Doug McIntyre
- Re: Help with issuing self signed certificates
- Prev by Date: ISP-09 call for papers
- Next by Date: Re: Help with issuing self signed certificates
- Previous by thread: ISP-09 call for papers
- Next by thread: Re: Help with issuing self signed certificates
- Index(es):
Relevant Pages
|
