Hi friend,
thanks a lot for your link ie.
www.openssl.org. As per documentation i created the
certificate/key pair file for server, now i giving very
large steps, please read it,
Step one - create the key and request:
openssl req -new > new.cert.csr
Step two - remove the passphrase from the key
(optional):
openssl rsa -in privkey.pem -out new.cert.key
Step three - convert request into signed cert:
openssl x509 -in new.cert.csr -out new.cert.cert -req
-signkey new.cert.key -days 365
The Apache-SSL directives that you need to use the
resulting cert are:
SSLCertificateFile /path/to/certs/new.cert.cert
SSLCertificateKeyFile /path/to/certs/new.cert.key
I create a client certificate
Step one - create a CA certificate/key pair, as above.
Step two - sign the client request with the CA key:
openssl x509 -req -in client.cert.csr -out
client.cert.cert -signkey my.CA.key -CA my.CA.cert
-CAkey my.CA.key -CAcreateserial -days 365
Step three - issue the file 'client.cert.cert' to the
requester.
while i run the above step the system sys my.CA.cert
file not found, By the following step i create the
my.CA.cert file
openssl x509 -in client.cert.csr -out client.cert.cert
-req -signkey my.CA.key -days 365
The Apache-SSL directives that you need to validate
against this cert are:
SSLCACertificateFile /path/to/certs/my.CA.cert
SSLVerifyClient 2
Then i run the web site it is working fine with secure
lock, But In client cannot import the client.cert.cert
file, while importing the file the system not accepting
the password, which is challenge password. can u give
some suggestion to solve the above problem.
Please tell me how to create the file my.CA.cert file.
this may be very length question please help me.
waiting for ur reply,
please help me.
karthikeyan.N
_______________________________________________
linux-india-help mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/linux-india-help
