Hi Javier, *,
Check the man pages (man req), the -x509 option is for a self signed cert
(root), while the -new option produces a new cert request (so you are asking
for conflicting tasks). In this case no request is needed because the it's
the root cert. Your config option is ok.
This way a root and its asociated private key.
openssl req -x509 -newkey rsa:1024 -keyout cakey.pem -out cacert.pem
-days 1095
Okay, that went fine! Thanks for your help. Now I tried to work through the
KB-Article but I don't get it to be honest. As far as I can say that I
understood what the Exchange wants for a type of certificate I say that the
Exchange2007 Server expects a file *.cer. To get this I should somehow get a
*.txt file to convert that into a *.cer. Am I right? What do I have to do to
get a *.txt file to be able to convert that into a *.cer?
Any help I might get from you on the list is highly appreciated cause I'm
stuck in the middle of nowhere :-(
Kind regards
Niels
--
View this message in context:
http://www.nabble.com/cannot-create-openssl-master-certificate-on-my-Exchange2007-Server%21Help-needed%21-tp24583342p24602436.html
Sent from the OpenSSL - User mailing list archive at Nabble.com.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager majord...@openssl.org
