Hi, please can you advise... We have some web servers and I want to create self signed certificates for them. I want to create my own certification authority keys and certificate, that will be imported to all web browsers of our users And I would like to create certificates, that will be signed by my own certification authority I believe this can be done with either OpenSSL or CA.pl (not sure of the merits of either) ?
Take a look here: http://www.howtoforge.com/how-to-set-up-an-ssl-vhost-under-apache2-on-ubuntu-9.10-debian-lenny
OpenSSL cont. These are the steps I'm trying to achieve but having a few challenges with ... 1) Creating CA: openssl genrsa -des3 -out ca.key 2048 openssl req -new -x509 -key ca.key -out ca.crt 2) Creating server key and certification request: openssl genrsa -des3 -out server.key 2048 openssl req -new -key server.key -out server.csr 3) Signing request with CA (created in step 1) openssl x509 -req -in server.csr -CA ca.crt -CAkey ca.key -CAcreateserial server.crt –days 365 Couple of things that don't seem to work -days 365 option (I keep defaulting to 30) and unable to omit pass phrase?
