On Fri, 17 Nov 2006, Dr. Stephen Henson wrote: > > What technique have you used to create the certificate? The simplest way is to > use the CA.pl script which will create a v3 certificate by default. Various > ancient and/or broken "cookbooks" can suggest all manner of weird commands.
Hello Steve, thanks for your kind response. I have created the certificate with plain openssl commands: # creation of private ca key openssl genrsa -des3 -out ca.key 4096 # creation of the ca certificate openssl req -new -x509 -days 3650 -key ca.key -out ca.crt # creation of the certificate of the ldap-server, the cert for the # acs was created the same way openssl x509 -req -days 3650 -in ldap1.csr -CA ca.crt -CAkey ca.key -set_serial 01 -out ldap1.crt I assume, that I have to set some opton in the config file but I did not find the infos anywhere. TIA, thomas ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
