Handy OpenSSL Commands

Date: August 1, 2018Author: J5 0 Comments

Create a new 2048 bit RSA key

openssl genrsa -out myServer.key 2048

Create a self-signed cert, good for 10 years

openssl req -x509 -key myServer.key -out myServer.crt -days 3652

Create a Certificate Signing Request

openssl req -new -key myServer.key -out myServer.csr

Verify contents of a CSR

openssl req -in myServer.csr -noout -text

Create a PKCS 12 file from cert/key

openssl pkcs12 -export -out myFile.pfx -inkey myServer.key -in MyServer.crt

Check if a cert matches a key

openssl x509 -noout -modulus -in myServer.crt | openssl md5 ;\
openssl rsa -noout -modulus -in myServer.key | openssl md5

Enter your comment here...

Fill in your details below or click an icon to log in:

Email (required) (Address never made public)

Name (required)

Website

You are commenting using your WordPress.com account. ( Log Out / Change )

You are commenting using your Google account. ( Log Out / Change )

You are commenting using your Twitter account. ( Log Out / Change )

You are commenting using your Facebook account. ( Log Out / Change )

Connecting to %s

%d bloggers like this:

	Igor on IPSec VPNs on Cisco routers wh…
	J5 on Cacti Template for Cisco Nexus…
	J5 on Cacti Template for Cisco Nexus…
	J5 on Cacti Template for Cisco Nexus…
	cogase on Cacti Template for Cisco Nexus…