OpenSSL Certificate Authority: Difference between revisions

Latest revision as of 18:08, 12 January 2020

Return net-snmp user creation Next NetAtalk setup

This guide demonstrates how to act as your own certificate authority (CA) using the OpenSSL command-line tools. This is useful in a number of situations, such as issuing server certificates to secure an intranet website, or for issuing certificates to clients to allow them to authenticate to a server.

Introduction

OpenSSL is a free and open-source cryptographic library that provides several command-line tools for handling digital certificates. Some of these tools can be used to act as a certificate authority.

A certificate authority (CA) is an entity that signs digital certificates. Many websites need to let their customers know that the connection is secure, so they pay an internationally trusted CA (eg, VeriSign, DigiCert) to sign a certificate for their domain.

In some cases it may make more sense to act as your own CA, rather than paying a CA like DigiCert. Common cases include securing an intranet website, or for issuing certificates to clients to allow them to authenticate to a server (eg, Apache, OpenVPN).

Return net-snmp user creation Next NetAtalk setup

Up Freebsd Knowledge Base

@@ Line 1: / Line 1: @@
 <hr><p style="text align:left;">
-Previous
+Return [[net-snmp user creation]]
 <span style="float:right;">
-Next [[Create the root pair]]
+Next [[NetAtalk setup]]
 </span></p><hr>
@@ Line 21: / Line 21: @@
 * [[Online Certificate Status Protocol]]
 * [[Appendices]]
-<hr><p style="text align:left;">
-Previous
+<hr>
-<span style="float:right;">
+<p style="text align:left;">Return [[net-snmp user creation]]
-Next [[Create the root pair]]
+<span style="float:right;">Next [[NetAtalk setup]]</span></p>
-</span></p>
+<center> Up [[Freebsd Knowledge Base]]</center>
+<hr>

OpenSSL Certificate Authority: Difference between revisions

Latest revision as of 18:08, 12 January 2020

Navigation menu

Search