Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revisionLast revisionBoth sides next revision | ||
cloudappliance/createcsr [2018_05_17 00:19] – doug | cloudappliance:createcsr [2024_03_18 19:54] – steven | ||
---|---|---|---|
Line 3: | Line 3: | ||
Log in as smeconfiguser then become root | Log in as smeconfiguser then become root | ||
- | openssl req -new -newkey rsa:2048 -nodes | + | Generate a config file we'll use, update the <server fqdn> with the URL you'd like to use for access. |
+ | |||
+ | vim san.cnf | ||
+ | |||
+ | [ req ] | ||
+ | default_bits | ||
+ | distinguished_name = req_distinguished_name | ||
+ | req_extensions | ||
+ | [ req_distinguished_name ] | ||
+ | countryName | ||
+ | stateOrProvinceName | ||
+ | localityName | ||
+ | organizationName | ||
+ | commonName | ||
+ | [ req_ext ] | ||
+ | subjectAltName = @alt_names | ||
+ | [alt_names] | ||
+ | DNS.1 = <server fqdn> | ||
+ | |||
+ | Next we'll use this config file and generate a key and csr, please fill out the releavnt locality info during this setup: | ||
+ | openssl req -out server.csr | ||
This will generate 2 files: | This will generate 2 files: | ||
- | | + | |
- | | + | |
- | Copy the file my_fqdn.com.key to the private certs folder | + | Copy the file private.key to the private certs folder |
- | cp my_fqdn.com.key / | + | cp private.key / |
Ensure the file is in the proper location before deleting it: | Ensure the file is in the proper location before deleting it: | ||
- | cat / | + | cat / |
- | rm my_fqdn.com.key | + | rm private.key |
Send the CSR to the Certificate Authority of choice | Send the CSR to the Certificate Authority of choice | ||
- | cat my_fqdn.com.csr | + | cat |
The certificate authority will reply with a signed public key and intermediary certs. | The certificate authority will reply with a signed public key and intermediary certs. | ||
- | These can be uploaded to the File Fabric when configuring via [[cloudappliance: | + | |