Go to most recent revision |
Details |
Last modification |
View Log
| RSS feed
| Rev |
Author |
Line No. |
Line |
| 181 |
rodolico |
1 |
# generate a private key to be used by the CA
|
|
|
2 |
openssl genrsa -des3 -out /root/certs/companyname_CA.key 4096
|
|
|
3 |
# now, generate a .pem file to be used go sign. Note we are setting the ttl to
|
|
|
4 |
# 3650 days (10 years) so we do not have to regen the CA very often. Adjust -days
|
|
|
5 |
# to match your security needs
|
|
|
6 |
openssl req -x509 -new -nodes -key companyname_CA.key -sha256 -days 3650 -out companyname_CA.pem
|