Differences

This shows you the differences between two versions of the page.

doc:howto:boxbackup [2013/10/18 22:44]
friedzombie
doc:howto:boxbackup [2014/04/27 23:07] (current)
tmomas typo correction
Line 43: Line 43:
  - Self-sign request: <code>openssl x509 -req -in ca-req.pem -sha1 -extensions v3_ca -signkey ca-key.pem -out ca-cert.pem -days <numberofdays></code>   - Self-sign request: <code>openssl x509 -req -in ca-req.pem -sha1 -extensions v3_ca -signkey ca-key.pem -out ca-cert.pem -days <numberofdays></code>
-It does this for a 'server' CA and a 'client' CA.  the serverCA signs server requests and the clientCA signs client requests.  You do not have to use seperate CAs if you don't want to, even though they do.+It does this for a 'server' CA and a 'client' CA.  The serverCA signs server requests and the clientCA signs client requests.  You do not have to use seperate CAs if you don't want to, even though they do.
=== Sign server certificate === === Sign server certificate ===
Line 53: Line 53:
<code>openssl x509 -req -in client-req.pem -sha1 -CA ca-key.pem -CAkey ca-key.pem client-key.pem -out client-cert.pem -days <numberofdays></code> <code>openssl x509 -req -in client-req.pem -sha1 -CA ca-key.pem -CAkey ca-key.pem client-key.pem -out client-cert.pem -days <numberofdays></code>
-Note that the difference between the server signing and the client signing ends up being insignificant because the default openssl configuration uses a defualt extension of usr_cert.+Note that the difference between the server signing and the client signing ends up being insignificant because the default openssl configuration uses a default extension of usr_cert.
==== Server ==== ==== Server ====

Back to top

doc/howto/boxbackup.1382129055.txt.bz2 · Last modified: 2013/10/18 22:44 by friedzombie