Hello, a week ago I already sent this question - but apparently got no response. My problem is still unsolved.
Yes, it maybe a newbie question - but could someone at least provide some pointers or explain what about the question should be stated differently? Basically, I need to create a web server certificxate, but I don't have the web server private key, nor do I have a usable CSR. -------- Original Message -------- Subject: how can I sign a public key? Date: Thu, 18 Jun 2009 22:46:17 +0200 From: Christoph Weber-Fahr <cwf...@arcor.de> Hello, Apparently I can't find a way to create an X.509 Web Server certificate for a given public key with openssl. I have a CSR with bad data, but I don't have the private key it has been signed with. I need a certificate, signed by my own local CA key, containing corrected data. So - is there a way to accomplish one of those - change the data in a csr before signing it with openssl x509 ? - generate an unsigned csr with openssl req for a given public key ? - sign a given public key with openssl x509 ? Any of those would solve my problem. Background - I have a bunch of embedded boxes that only export a csr and accept a certificate. But they are broken - they do not include the domain in the CN, so any access with fqdn creates an error. Any idea how to tackle this? Regards, and TIA for any suggestion, Christoph Weber-Fahr ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
