Hi Chris: Although it sounds a bit overkill for what you are looking for, as part of our "CertiPath Test CA using OpenSSL" Howto, a goodly portion of the various settings and possible configurations of the parameters are explained, and scripts are also provided for generation of a number of different kinds of certificates.
It can be found at: http://www.carillon.ca/library/openssl_testca_howto_1.3.pdf Have fun. Patrick. On 2010-09-28, at 11:05 AM, Chris Rider wrote: > Not discouraged at all (just short on time trying to meet a deadline). > > I'll check out TinyCA (and the like) in the meantime, but actually do hope to > delve into the source and figure out those directives when I get some time. I > do appreciate your time and attention!! > > > On 09/28/2010 09:41 AM, Mark H. Wood wrote: >> I don't want to discourage you from learning the details yourself, but >> you may want to look at some wrapper software that is already worked >> out and takes care of these things for you. For example, I usually >> find TinyCA adequate to my minuscule certificate-processing needs. >> >> Even if you decide not to use such a tool, you may learn some useful >> things by studying the code. >> > ______________________________________________________________________ > OpenSSL Project http://www.openssl.org > User Support Mailing List openssl-users@openssl.org > Automated List Manager majord...@openssl.org --- Patrick Patterson President and Chief PKI Architect Carillon Information Security Inc. http://www.carillon.ca tel: +1 514 485 0789 mobile: +1 514 994 8699 fax: +1 450 424 9559 ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org