Solved

OpenSSL Certificate Signing Request

Posted on 2006-11-14
2
1,583 Views
Last Modified: 2008-01-09
I'm setting up SSL/TLS on my pop3 server and apparently I need a signed certificate.  Ascertia.com offers free certificates but I'm having problems making a certificate request that will work.

Their page states, "Paste a base64 encoded PKCS #10 certificate request or PKCS #7 renewal request generated by an external application (such as a web server) into the request field to submit the request to the certification authority (CA). "

Can someone point me towards a tutorial for using OpenSSL to create a PKCS #10 certificate request?


0
Comment
Question by:phasevar
2 Comments
 
LVL 5

Accepted Solution

by:
rowdy_h earned 500 total points
ID: 17949283
Give this a go
openssl genrsa -out key.pem 1024
openssl req -new -key key.pem -out req.pem

The first generates a key to use in the creation of the request. The second creates the request. The default format is PEM which acording to the site below is
"The DER option uses an ASN1 DER encoded form compatible with the PKCS#10. The PEM form is the default format: it consists of the DER format base64 encoded with additional header and footer lines."

So as you want PKCS #10 base64 encoded this is the right format for you.

Taken from http://www.mkssoftware.com/docs/man1/openssl_req.1.asp
0
 

Author Comment

by:phasevar
ID: 18025893
Thanks!
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

​Being a Managed Services Provider (MSP) has presented you  with challenges in the past— and by meeting those challenges you’ve reaped the rewards of success.  In 2014, challenges and rewards remain; but as the Internet and business environment evol…
BIND is the most widely used Name Server. A Name Server is the one that translates a site name to it's IP address. There is a new bug in BIND (https://kb.isc.org/article/AA-01272), affecting all versions of BIND 9 from BIND 9.1.0 (inclusive) thro…
This Micro Tutorial will teach you how to censor certain areas of your screen. The example in this video will show a little boy's face being blurred. This will be demonstrated using Adobe Premiere Pro CS6.
In this video I am going to show you how to back up and restore Office 365 mailboxes using CodeTwo Backup for Office 365. Learn more about the tool used in this video here: http://www.codetwo.com/backup-for-office-365/ (http://www.codetwo.com/ba…

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

22 Experts available now in Live!

Get 1:1 Help Now