Collections:
Other Resources:
OpenSSL "req" - distinguished_name Configuration Section
What is the distinguished_name section in the OpenSSL configuration file?
✍: FYIcenter.com
The distinguished_name section in the OpenSSL configuration file is a required section of options when using OpenSSL "req -new" or "req -newkey" commands to generate a new CSR or self-signed certificate.
distinguished_name sections provides options to control the behavior of the following two groups of DN (Distinguished Name) fields.
1. Standard DN fields:
2. Additional DN fields:
There are 2 modes to use when writing distinguished_name section in the configuration file:
1. "prompt=no" mode - This mode tells OpenSSL to not prompt user for distinguished name fields. It will read distinguished_name section as values for DN fields, instead of field prompting labels.
For example: "countryName=US" tells OpenSSL to use "US" as the countryName value.
2. "prompt=yes" mode - This mode tells OpenSSL to prompt user for distinguished name fields. It will read distinguished_name section as prompting labels for DN fields, instead of field values.
For example: "countryName=Country ISO2 Code" tells OpenSSL to use "Country ISO2 Code []:" to prompt the user to enter the countryName value.
⇒ OpenSSL "req" - "prompt=no" Mode
2016-11-02, 29🔥, 0💬
Popular Posts:
Certificate summary - Owner: COMODO RSA Certification Authority, COMODO CA Limited, L=Salford, ST=Gr...
What is the default behavior of the "certutil -store" command? The default behavior of the "certutil...
Certificate summary - Owner: GeoTrust Primary Certification Authority, GeoTrust Inc., US Issuer: Equ...
Certificate summary - Owner: *.mediafire.com, "MediaFire, LLC", L=Shenandoah, ST=Texas, US Issuer: T...
Certificate summary - Owner: *.patch.com, Application and Web Services, AOL Inc., L=Dulles, ST=Virgi...