|
bash-2.05b# openssl req -config
/etc/ssl/openssl.cnf -new -x509 -keyout /etc/ssl/nemesida-ca.pem -out
nemesida-ca.pem -days 3650
Generating a 1024 bit RSA private key ....++++++ ..++++++ writing new private key to '/etc/ssl/nemesida-ca.pem' Enter PEM pass phrase: Verifying - Enter PEM pass phrase: ----- You are about to be asked to enter information that will be incorporated into your certificate request. What you are about to enter is what is called a Distinguished Name or a DN. There are quite a few fields but you can leave some blank For some fields there will be a default value, If you enter '.', the field will be left blank. ----- Country Name (2 letter code) []:RU State or Province Name (full name) []: Locality Name (eg, city) []:Moscow Organization Name (eg, company) []:GOPB Organizational Unit Name (eg, section) []: Common Name (eg, fully qualified host name) []:bsd.ru Email Address []:[EMAIL PROTECTED] bash-2.05b# openssl
rsa -in /etc/ssl/nemesida-ca.pem -out nemesida-ca.key
Enter pass phrase for /etc/ssl/nemesida-ca.pem: writing RSA key bash-2.05b# openssl x509 -in nemesida-ca.pem -out nemesida-ca.crt bash-2.05b# bash-2.05b# openssl req -config
/etc/ssl/openssl.cnf -new -keyout /etc/ssl/nemesida.pem -out
/etc/ssl/nemesida.pem
Generating a 1024 bit RSA private key .........++++++ ..........................++++++ writing new private key to '/etc/ssl/nemesida.pem' Enter PEM pass phrase: Verifying - Enter PEM pass phrase: ----- You are about to be asked to enter information that will be incorporated into your certificate request. What you are about to enter is what is called a Distinguished Name or a DN. There are quite a few fields but you can leave some blank For some fields there will be a default value, If you enter '.', the field will be left blank. ----- Country Name (2 letter code) []:RU State or Province Name (full name) []: Locality Name (eg, city) []:Moscow Organization Name (eg, company) []: Organizational Unit Name (eg, section) []: Common Name (eg, fully qualified host name) []: Email Address []:[EMAIL PROTECTED] Please enter the following 'extra'
attributes
to be sent with your certificate request A challenge password []: An optional company name []: bash-2.05b# bash-2.05b#
openssl rsa -in /etc/ssl/nemesida.pem -out nemesida.key
Enter pass phrase for /etc/ssl/nemesida.pem: writing RSA key bash-2.05b# bash-2.05b# openssl ca -config /etc/ssl/openssl.cnf -policy policy_anything -out /etc/ssl/nemesida.pem -infiles /etc/ssl/nemesida.pem Using configuration from /etc/ssl/openssl.cnf variable lookup failed for ca::default_ca 1863:error:0E06D06C:configuration file routines:NCONF_get_string:no value:/usr/src/lib/libssl/crypto/../src/crypto/conf/conf_lib.c:329:group=ca name=default_ca Why I have this error ?
|
