About generating own CA

Hi, all

I am currently establishing a server and making a SSL connection setting.

I have tried the following link to create a set of certificates and it is a piece of cake
OpenSUSE Linux: Creating Self-Signed SSL Certificates

However, when I try to make the same thing in YAST2-CA-MANAGEMENT
I come across several problems.

Should I make the certificates by following step?

  1. create root ca
  2. Enter root ca, advance -> export to file -> ca.crt
  3. “Certificate” tab -> create sever certificate
  4. Export server certificate file:
    4a. Only the certificate in PEM format (save as server.crt), put it under “etc/apahce2/ssl.crt”
    4b. Only the key unencrypted in PEM format (save as server.key), put it under “etc/apahce2/ssl.key” 下
  5. generate CRL
    6 “Request” tab-> request -> sign as server (at this moment, a new certificate will be generated, I call it “XXX”)
    6a Export “XXX” File -> save as (server.csr), put is under (ssl.csr)

Step 6 confused me most because I don’t know how to sign the certificate and generate .csr file.
I can’t find a export function for .csr file.
So, I come here to ask for help.
Also, should I put ca.crt file in the “etc/apache/ssl.crt” folder?

Anyone could kindly answer my question?
Many thanks.

On Thu, 18 Oct 2012 16:06:02 +0000, vd3000 wrote:

> Anyone could kindly answer my question?

What version of openSUSE are you using?

Jim


Jim Henderson
openSUSE Forums Administrator
Forum Use Terms & Conditions at http://tinyurl.com/openSUSE-T-C

I am currently using openSUSE 12.2
I find this application is complicated and may be I am new for the openSUSE…
I have tried to read the manual and security manual of the document but I am not sure do I make any mistake to export those certificates.
I found there are some .crt/.pem files in the folder “var/lib/CAM”. But I am not familiar with the certificate issuing, so, I don’t know which one should I put in the ssl.crt/ssl.key and ssl.csr folder…

Thanks Jim,
I am currently using openSUSE 12.2
I find this application is complicated and may be I am new for the openSUSE…
I have tried to read the manual and security manual of the document but I am not sure do I make any mistake to export those certificates.
I found there are some .crt/.pem files in the folder “var/lib/CAM”. But I am not familiar with the certificate issuing, so, I don’t know which one should I put in the ssl.crt/ssl.key and ssl.csr folder…