Solved

OpenSSL Certificate Signing Request

Posted on 2006-11-14
2
1,585 Views
Last Modified: 2008-01-09
I'm setting up SSL/TLS on my pop3 server and apparently I need a signed certificate.  Ascertia.com offers free certificates but I'm having problems making a certificate request that will work.

Their page states, "Paste a base64 encoded PKCS #10 certificate request or PKCS #7 renewal request generated by an external application (such as a web server) into the request field to submit the request to the certification authority (CA). "

Can someone point me towards a tutorial for using OpenSSL to create a PKCS #10 certificate request?


0
Comment
Question by:phasevar
2 Comments
 
LVL 5

Accepted Solution

by:
rowdy_h earned 500 total points
ID: 17949283
Give this a go
openssl genrsa -out key.pem 1024
openssl req -new -key key.pem -out req.pem

The first generates a key to use in the creation of the request. The second creates the request. The default format is PEM which acording to the site below is
"The DER option uses an ASN1 DER encoded form compatible with the PKCS#10. The PEM form is the default format: it consists of the DER format base64 encoded with additional header and footer lines."

So as you want PKCS #10 base64 encoded this is the right format for you.

Taken from http://www.mkssoftware.com/docs/man1/openssl_req.1.asp
0
 

Author Comment

by:phasevar
ID: 18025893
Thanks!
0

Featured Post

Master Your Team's Linux and Cloud Stack

Come see why top tech companies like Mailchimp and Media Temple use Linux Academy to build their employee training programs.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Problems with WHM / cPanel OWASP ModSecurity..?? 3 422
open port 993, 995, 110, 143  for mail server 20 2,390
Hardening guide / standard used on ATM machines 4 308
centos linux 65 128
BIND is the most widely used Name Server. A Name Server is the one that translates a site name to it's IP address. There is a new bug in BIND (https://kb.isc.org/article/AA-01272), affecting all versions of BIND 9 from BIND 9.1.0 (inclusive) thro…
Fine Tune your automatic Updates for Ubuntu / Debian
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question