Thank you. Sorry, I didn't detail the situation well.
The output file can be .pem that's not a problem, the internal format needs to be pkcs7. What I was asked to do is take a Linux box with OpenSSL already installed on it and set it up as a Root or Certificate Authority to supply certificate(s) to clients within a project that is using a good deal of SSL connections. The goal is to keep both the cost and exposure to a contained network area. So I need to generate a certificate rather than encode something that is pre-existing or requested form elsewhere. (If this is doable.) Then the Linux box will needs to supply this certificate function within a backend network. So can I use a variation of this: >openssl crl2pkcs7 -nocrl -certfile cert1.pem -certfile cert2.pem -certfile >cert3.pem -outform DER -out cert.p7b > >Where cert1.pem etc are the PEM encoded certificates you want to include. To do generate an internal format of pkcs7 that yields a new certificate? Again I think it is fine if the file format saved can be PEM encoded as long as the internal is pkcs7. Again, thanks for the help. Hey is there a book on OpenSSL? ---- Chet Golding Hewlett-Packard ESDO, Operations Engineering ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
