In the config of OpenSSL use next:
[ user_cert ]
basicConstraints = critical,CA:false
subjectKeyIdentifier = hash
subjectAltName=IP:[your server IP] OR
subjectAltName= email:copyOR
subjectAltName= URI:
Hi Rodney,
Thanks for the reply.
What I have is a cert request from a 2003 server with the following as
an example:
Subject Name (SN): servername.domainname.com.au
Subject Alternative Name (SAN): AlternateServername.domainname.com.au
I am far from an expert on certificates, but I know these can
Are you saying you have a Microsoft Windows 2003 Server system
that has already created a certificate request (PKCS-10 formatted
data file) with multiple subjectaltname's, and you would like
an OpenSSL-based CA to sign it and grant it "server authentication"
and "client authentication" key usage?
Hi there,
Up to now I have ever only done certs for web servers which are quite
straight forward.
I now have the requirement to fulfill requests with the following:
multiple subject alternative names
server authentication
client authentication
If anyone can pass on info or point me in the right
