зеркало из https://github.com/mono/mono-tls.git
23 строки
744 B
Plaintext
23 строки
744 B
Plaintext
Initialize:
|
|
$ echo '100001' >serial
|
|
$ touch certindex.txt
|
|
$ mkdir certs
|
|
|
|
Create CA:
|
|
/usr/local/bin/openssl req -new -x509 -days 3650 -keyout cakey.pem -out cacert.pem
|
|
|
|
Create Certificate Request:
|
|
/usr/local/bin/openssl req -new -nodes -out monkey-req.pem -keyout monkey-key.pem -days 3650
|
|
|
|
Create Certificate:
|
|
/usr/local/bin/openssl ca -cert cacert.pem -keyfile cakey.pem -out monkey-cert.pem -days 3650 -infiles monkey-req.pem
|
|
|
|
Create .PFX:
|
|
/usr/local/bin/openssl pkcs12 -export -out monkey.pfx -inkey monkey-key.pem -in monkey-cert.pem
|
|
|
|
Password is 'monkey'.
|
|
|
|
Create CR for the Server Certificate:
|
|
openssl req -config server-cert.conf -extensions server_exts -nodes -days 3650 -newkey rsa:4096 -keyout server-cert.key -out server-cert.crt
|
|
|