Solved

Using OPENSSL to generate Self Signed certs - how you you set a NOT BEFORE date on the cert ?

Posted on 2014-10-30
2
200 Views
Last Modified: 2015-01-08
Using OpenSSL to generate some self certs and I need to create a certificate with a specific date in the past.

What are the steps and switches needed if possible ?
I am using the following to create amy self cert, is there a switch to set a start date ?
openssl x509 -req -days 365 -in server.csr -signkey -node server.key -out server.crt
0
Comment
Question by:ccfcfc
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 33

Accepted Solution

by:
Dave Howe earned 500 total points
ID: 40414089
do you *need* to use openssl? the x509 subtool doesn't allow specifying a start date, although the ca subtool does (and can generate self-signed certs if needed)

however, I would recommend you use XCA - A java based GUI tool that lets you specify such things easily.
0
 

Author Comment

by:ccfcfc
ID: 40415475
Perfect, thats a good tool in deed I must say .
Thanks very much
0

Featured Post

Put Machine Learning to Work--Protect Your Clients

Machine learning means Smarter Cybersecurity™ Solutions.
As technology continues to advance, managing and analyzing massive data sets just can’t be accomplished by humans alone. It requires huge amounts of memory and storage, as well as high-speed processing of the cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Many companies are looking to get out of the datacenter business and to services like Microsoft Azure to provide Infrastructure as a Service (IaaS) solutions for legacy client server workloads, rather than continuing to make capital investments in h…
This paper addresses the security of Sennheiser DECT Contact Center and Office (CC&O) headsets. It describes the DECT security chain comprised of “Pairing”, “Per Call Authentication” and “Encryption”, which are all part of the standard DECT protocol.
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

738 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question