On Thu, May 13, 2004, David Bolufer wrote: > Hello! > > I generate this certificate.... > > > ..\openssl genrsa -out mcg.key -des3 2048 > ..\openssl req -out mcg.csr -new -key mcg.key > ..\openssl req -out mcg.crt -x509 -key mcg.key -in mcg.csr > > The I execute ..\openssl pkcs12 -export -in mcg.crt -inkey mcg.key -out > mcg_openssl.p12 -name MCG_Gestión > > But i need that the Sigature Algoritme will be SHA1RSA, not md5RSA. I don´t > know the command to run with openssl pkcs12 >
The signature algorithm is part of the certificate not the PKCS#12 file. So you need to include -sha1 in the certificate creation command. BTW you can combine all that lot into one command: openssl req -newkey rsa:2048 -keyout mcg.key -x509 -out mcg.crt -sha1 Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSSL project core developer and freelance consultant. Funding needed! Details on homepage. Homepage: http://www.drh-consultancy.demon.co.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
