How to sign an IIS SSL certificate request using OpenSSL
2012-04-20 22:11
489 查看
http://blog.dzhuvinov.com/?p=738
How to sign an IIS SSL certificate request using OpenSSL
The OpenSSL toolkit can be used to sign IIS / ADAM certificate requests. This is done in 5 steps:
1. Create a directory and put the certificate request file
IIS Certificate Wizard.
2. Generate an RSA private key for your
certificate authority (CA). You will be prompted to enter a password to protect the key.
3. Using the above private key generate a certificate for your certificate authority (CA). You will be prompted to enter a few details about your CA, such as organisation name.
4. Finally, use your certificate authority (CA) to sign the IIS certificate request. It will be marked valid for 365 days.
5. Restart the IIS Certificate Wizard and pass the signed certificate
Done!
How to sign an IIS SSL certificate request using OpenSSL
The OpenSSL toolkit can be used to sign IIS / ADAM certificate requests. This is done in 5 steps:1. Create a directory and put the certificate request file
certreq.txtin it. This file is typically generated by the
IIS Certificate Wizard.
2. Generate an RSA private key for your
certificate authority (CA). You will be prompted to enter a password to protect the key.
openssl genrsa -des3 -out cakey.pem 2048
3. Using the above private key generate a certificate for your certificate authority (CA). You will be prompted to enter a few details about your CA, such as organisation name.
openssl req -new -key cakey.pem -x509 -days 1825 -extensions v3_ca -out ca.crt
4. Finally, use your certificate authority (CA) to sign the IIS certificate request. It will be marked valid for 365 days.
openssl x509 -req -days 365 -in certreq.txt -CA ca.crt -CAkey cakey.pem -CAcreateserial -out iis.cer
5. Restart the IIS Certificate Wizard and pass the signed certificate
iis.certo it.
Done!
内容来自用户分享和网络整理,不保证内容的准确性,如有侵权内容,可联系管理员处理 
相关文章推荐
- 转:How to generate Certificate Signing Request (CSR) file with Apache OpenSSL
- Moving an IIS SSL certificate to a Domino Keyring File[转]
- Using CAPICOM to obtain an SSL Certificate
- how to create an ssl certificate on nginx for ubuntu14.04
- How to setup an iSCSI target using tgtadm
- How to write an application that supports the Fast User Switching feature by using Visual Basic .NET or Visual Basic
- How to Simulate the Price Order or Price Line Function using API QP_PREQ_PUB.PRICE_REQUEST Includes
- How to Send an Email Using UTL_SMTP with Authenticated Mail Server
- Https SSL Knowledge & how to get a self-signed certificate on ubuntu.
- How to access the features in an in-memory output layer using an IFeatureCursor
- HOW to Use QP_PREQ_PUB.PRICE_REQUEST API to Price an Item
- How to Perform A Miscellaneous Transaction Using An API (文档 ID 2078693.1)
- How to deploy an Analysis Services database using a script
- How to simulate a Form POST request by using WinInet
- OpenSSL RSA sign and verify howto
- How To Create An ASM Diskgroup Using XML code Thru ASMCMD [ID 1290550.1]
- How to create jigsaw puzzle from an image using javascript(拼图引擎)
- How to Send an Email Using UTL_SMTP with Authenticated Mail Server. (文档 ID 885522.1)
- How to solve SSL certificate problem with git-svn
- How to get blob data using javascript XmlHttpRequest by sync