ExternalVendorCode/OpenMTC
1
0
Fork 0
mirror of https://github.com/OpenMTC/OpenMTC.git synced 2024-12-21 22:07:57 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
6ba2b82032
OpenMTC/doc/certificates.md
Christian Klopp e9af73dfe8 initial commit
2017-11-07 14:41:38 +01:00

1022 B
Raw Blame History

Certificate Issuance Guide

How to create certificates?

TODO: some extra documentation when issuance is changed

OpenSSL commands to create certificates

  1. Create a Private Key

    $ openssl ecparam -genkey -name prime256v1 -out intermediate/private/server.key.pem

  2. Create a Certificate Signing Request

    The private key is used to create a certificate signing request (CSR).

    $ openssl req -new -SHA256 -nodes -config intermediate/openssl_intermediate.cnf -key intermediate/private/server.key.pem -out intermediate/csr/server.csr.pem

  3. Create a Certificate

    The Certificate Authority (CA) (in this case the intermediate CA) is used to sign the CSR and create a certificate.

    openssl ca -config intermediate/openssl_intermediate.cnf -extensions server_cert -days 365 -notext -md sha256 -in intermediate/csr/server.csr.pem -out intermediate/certs/server.cert.pem

How to setup the certificates when using Docker?

TODO: NC