openssl: Create a selfsigned certificate

2 clicks for more data protection: Only when you click here, the button will be come active and you can send your recommendation to Flattr. When activating, data are transmitted to third parties. nicht mit Flattr verbunden
When you activate these fields by clicking, information to Flattr may be transferred abroad, and probably may also stored there.

Hi,

creating selfsigned certificate with openssl is one step

This command creates a 4096 Bit key ( myKey.key ) and the corresponding selfsigned public key (myCert.pem).

michael@debdev ~ # openssl req -x509 \
-newkey rsa:4096 \
-keyout myKey.key \
-out myCert.pem \
-sha256 \
-days 365 \
-batch \
-nodes \
-subj "/C=DE/ST=Franken/L=Nuremburg/O=my Organizaton/OU=My Department/CN=myHostname.myDomain.org/emailAddress=myEMailAddress@myDomain.org"

and with keyusage and extented key usage

openssl req -x509 -newkey rsa:2048 -keyout private.key -out cert.pem -days 365 -nodes -subj "/CN=myServer.myDomain.org" -addext "keyUsage=keyEncipherment,dataEncipherment" -addext "extendedKeyUsage=serverAuth"

If you don’t want to set a passphrase on the private key omit the -nodes switch.

Michael

My Knowledgebase for things about Linux, Windows, VMware, Electronic and so on…

Michls Tech Blog

openssl: Create a selfsigned certificate

Leave a Reply Cancel reply

My Knowledgebase for things about Linux, Windows, VMware, Electronic and so on…