OpenSSL Certificate Signing Request

I'm setting up SSL/TLS on my pop3 server and apparently I need a signed certificate.  Ascertia.com offers free certificates but I'm having problems making a certificate request that will work.

Their page states, "Paste a base64 encoded PKCS #10 certificate request or PKCS #7 renewal request generated by an external application (such as a web server) into the request field to submit the request to the certification authority (CA). "

Can someone point me towards a tutorial for using OpenSSL to create a PKCS #10 certificate request?


phasevarAsked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

x
 
rowdy_hConnect With a Mentor Commented:
Give this a go
openssl genrsa -out key.pem 1024
openssl req -new -key key.pem -out req.pem

The first generates a key to use in the creation of the request. The second creates the request. The default format is PEM which acording to the site below is
"The DER option uses an ASN1 DER encoded form compatible with the PKCS#10. The PEM form is the default format: it consists of the DER format base64 encoded with additional header and footer lines."

So as you want PKCS #10 base64 encoded this is the right format for you.

Taken from http://www.mkssoftware.com/docs/man1/openssl_req.1.asp
0
 
phasevarAuthor Commented:
Thanks!
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.