..\openssl genrsa -out mcg.key -des3 2048
..\openssl req -out mcg.csr -new -key mcg.key
..\openssl req -out mcg.crt -x509 -key mcg.key -in mcg.csr
..\openssl pkcs12 -export -in mcg.crt -inkey mcg.key \
> -out mcg_openssl.p12 -name MCG_Gestión
But i need that the Sigature Algoritme will be SHA1RSA, not md5RSA. I
don´t know the command to run with openssl pkcs12
If I understand correctly the Signature Algorithm is done in
the req -x509 call. You might find the manual entry useful:
% man req
...
-[md5|sha1|md2|mdc2]
this specifies the message digest to sign the request with. This
overrides the digest algorithm specified in the configuration file.
This option is ignored for DSA requests: they always use SHA1.
So you might see if adding -sha1 to the req -x509 call does
what you want.
--
Charles B. (Ben) Cranston
mailto:[EMAIL PROTECTED]
http://www.wam.umd.edu/~zben
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
