I issued the following command (with my own name in place of privkey) openssl genrsa -out privkey.pem 2048 I then made the csr using
openssl req -new -key privkey.pem -out cert.csr That is simple enough. But, I need a .key file to deploy on the server beside the crt files. If I understand these commands well enough, privkey.pem ought to contain the private key, but how do I get the right .key file from it. Surely it is not as simple as openssl rsa -in veripay.pem -out gw.veripay.co.uk.key (which makes a file, but since I am not sure of it, I do not want to deploy that file yet, least I make the web server fail to start (and it is in production use, and I do not have a system administrator to ask). And while I am at it, how would I modify the above commands so that I get the .key file right at the start, when I make the key, rather than having to try to recover it from the pem file? Thanks Ted ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
