Hi there, I'm using the self-signed CA with a server cert generated by the installer and it's working, I'd just like to add another server cert with a subject alt name for the same server. I generated the CSR ut can't work out how to generate the certificate.
I had to convert the CSR to DER format and then this is the command I'm trying:
certutil -C -c "Self-Signed-CA" -i ./dirsrv_der.csr -o ./newcert.cer -m 010 -v 24 -w 1 -d /etc/dirsrv/slapd-primary/ -1 nonRepudiation,dataEncipherment -5 sslClient -6 clientAuth -7 avanremo@me.com
The output I get from the above command is:
0 - Digital Signature
1 - Non-repudiation
2 - Key encipherment
3 - Data encipherment
4 - Key agreement
5 - Cert signing key
6 - CRL signing key
Other to finish
>
Nothing seems to do anything at this point, selecting any number here and hitting return just pops that menu up again.
Arnaud
No comments:
Post a Comment