Jason Haar wrote:
>
> I'm trying to automate the generation of certs, and I've found that "openssl
> req" under OpenSSL-0.9.4 doesn't like running non-interactively.
>
> There's no "-batch" mode option and if I try to do clever things with
> redirecting stdin, it just doesn't work :-(
>
> Can someone tell me how I can automate this so that I can just create a temp
> config file, and run it like:
>
> openssl req -new -nodes -keyout key.pem -out req.pem -days 365 \
> -config /tmp/root/temp.conf
>
> and it'll run to completion without requiring me to hit RETURN/etc.
>
You can't do this very well with OpenSSL 0.9.4 though if you look
through the test scripts there's an example
OpenSSL 0.9.5 req was modified to specifically allow this and has
several new config file options, the manual page has an example too.
Steve.
--
Dr Stephen N. Henson. http://www.drh-consultancy.demon.co.uk/
Personal Email: [EMAIL PROTECTED]
Senior crypto engineer, Celo Communications: http://www.celocom.com/
Core developer of the OpenSSL project: http://www.openssl.org/
Business Email: [EMAIL PROTECTED] PGP key: via homepage.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
