Re: CSR with only public key

You are right. Cannot create a certificate with CSR containing only public key. Thanks for the explanation. -- Sent from: http://openssl.6102.n7.nabble.com/OpenSSL-User-f3.html

Re: CSR with only public key

Hey, Try calculating the private Key from the public key ;-) but this can last a little time you don't have; Walter On Thu, September 12, 2019 09:50, Bharathi Prasad wrote: > Hi, > I have the public key of the client but not the private key. > ... > > Regards, > Bharathi

Re: CSR with only public key

Hi, Thanks for the prompt replies. I agree signature from private key should be present in a CSR. However, as per RFC 2511, Proof Of Possession is optional though it strongly recommends to have it. I was able to create the CSR with only public key. I was unintentionally adding an extra line at th

Re: CSR with only public key

On Thu, Sep 12, 2019 at 12:50:23AM -0700, Bharathi Prasad wrote: > I have the public key of the client but not the private key. I am required > to generate a CSR with only public key. I understand private key is required > for Proof of Possession. However, as per my requirement I am supposed to >

Re: CSR with only public key

>I used CX509CertificateRequestCertificate class to create CSR with only public key. Those functions/classes/names/whatever are not part of OpenSSL. The OpenSSL "req" command cannot process as CSR unless it is signed by the private key. If you have a requirement to sign a CSR w

Re: CSR with only public key

If a CA signs a certificate without proof of possession of the private key, the CA is enabling whoever does have that private key to look as though they are the one who they sign the certificate for (i.e., impersonation). The entire structure of PKI (the binding of the public half of a keypair to s

Re: CSR with only public key

n. > > Regards > Francesco Petruzzi > > Da: openssl-users [mailto:openssl-users-boun...@openssl.org > <mailto:openssl-users-boun...@openssl.org>] Per conto di Paul Yang via > openssl-users > Inviato: giovedì 12 settembre 2019 09:51 > A: Bharathi Prasad > Cc

Re: CSR with only public key

I used CX509CertificateRequestCertificate class to create CSR with only public key. -- Sent from: http://openssl.6102.n7.nabble.com/OpenSSL-User-f3.html

Re: CSR with only public key

How could you create the CSR with only public key? > On Sep 12, 2019, at 3:50 PM, Bharathi Prasad > wrote: > > Hi, > I have the public key of the client but not the private key. I am required > to generate a CSR with only public key. I understand private key is required > for Proof of Possessio