Hello there,
I have a problem. I am attempting to generate a self-signed (for internal
use) certificate with multiple SAN and all I can get is a V1 certificate
with no SAN at all. Any help would be greatly appreciated.
Here is the detail of my attempt:
# Generate a 2048 RSA key
OpenSSL
Revocation will just add the client_cert serial number to the
revocation list (revoke.lst).
Then with 'openssl ca -gencrl -keyfile caKeyFile -cert caCertFile
-out crlFile -crldays 1234' you can make the CRL for distribution
and then available for the server. (assuming you
Hi,
I have a doubt in revoking certificates. To revoke a certificate from
the server side we need to use the below command
openssl ca -revoke clientcertificate -keyfile cakey -cert cacertificate
my question is do we need to store the client certificates in server
side to revoke it.
Please help
