|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Cushing, David (David.Cushing
hitachisoftware.com)Date: Thu May 30 2002 - 10:34:51 CDT
> I was trying to implement self signed SSL certificates on a server.
> The commands I used to generate the certificate are:
>
> openssl genrsa -out server.key 1024
> openssl req -new -key server.key -x509 -out server.crt
>
> The whole thing works perfectly, but I have a small problem. The
> certificate is valid for a very short period (around a month or so).
> I would like the certificate to be valid for maybe around an
> year or so.
Use the -days option.
openssl req -new -key server.key -x509 -out server.crt -days 365
Also check on default_days setting in your config file. If you use this new CA to sign other certs, this is how long they will be valid for.
Regards,
David
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]