We help IT Professionals succeed at work.

Understanding OpenSSL Command Line Options

Kevlarmcc
Kevlarmcc asked
on
I am configuring OpenSSL. I can find endless resources to tell me what the commands are to do the basic tasks. I cannot seem to find anywhere that has information on what the commands and switches really mean. For example I look at this code:

Great I have a CSR. But I would like to know what -new. -newkey, -in, -out mean. I can figure out some but I can't find a resource that defines them. I have found openssl.org and modssl.org as inadequate as every source that quotes directly from them. I can find the syntax but no explanations. Anyone have any suggestions?
openssl genrsa -out server.key 1024
openssl req -new -key server.key -out server.csr
sign.sh server.csr

Open in new window

Comment
Watch Question

Software Engineer -- Consultant
Commented:
1. -out means "output to filename server.key which should be 1024 bits"
2. Create a Certificate Signing Request (CSR) with the server RSA private key and output the CSR key to server.csr
3. sight server.csr ( your certificate singning request ) using ca , thus creating a real ssl cert.

http://www.stllinux.org/meeting_notes/1999/0715/ca.html

Explore More ContentExplore courses, solutions, and other research materials related to this topic.