Go to most recent revision | Blame | Compare with Previous | Last modification | View Log | Download | RSS feed
# generate a private key to be used by the CA
openssl genrsa -des3 -out /root/certs/companyname_CA.key 4096
# now, generate a .pem file to be used go sign. Note we are setting the ttl to
# 3650 days (10 years) so we do not have to regen the CA very often. Adjust -days
# to match your security needs
openssl req -x509 -new -nodes -key companyname_CA.key -sha256 -days 3650 -out companyname_CA.pem
Generated by GNU Enscript 1.6.5.90.