Hi, > Thank you! But now I'm spending my time with another issue with this: I > cannot create certificate longer than I month: > > This is my CA certificate validity: > ... > Not Before: Aug 3 10:07:14 2011 GMT > Not After : Aug 2 10:07:14 2012 GMT > ... > > This is my server's certificate validity (created today): > ... > Not Before: Aug 4 07:27:29 2011 GMT > Not After : Sep 3 07:27:29 2011 GMT > ... > > The server certificate was created by command: > openssl req -new -key server.key -out server.csr -days 365 > > As you can see, the "-days X" did not helped...
check your openssl conf file - eg /etc/pki/tls/openssl.cnf on redhat/centos this is a place where you can specify default values for duration, using SHA1 rather than MD5, default certificate size etc etc alan ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
