Categories:
DH Keys (39)
DSA Keys (69)
EC Keys (340)
Firefox (32)
General (13)
Google Chrome (25)
Intermediate CA (152)
Java VM (20)
JDK Keytool (25)
Microsoft CertUtil (26)
Mozilla CertUtil (18)
OpenSSL (237)
Other (17)
Portecle (38)
Publishers (1971)
Revoked Certificates (30)
Root CA (87)
RSA Keys (1837)
Tools (47)
Tutorial (7)
What Is (21)
Windows (129)
Collections:
Other Resources:
OpenSSL "req new -batch" - Using DN Default Values Only
How to run OpenSSL "req -new" command in batch mode? I don't OpenSSL to use DN default values only and do not prompt me.
✍: FYIcenter.com
If you have DN (Distinguished Name) default values provided
in the configuration file, you can run OpenSSl "req -new -batch" command
to take default values only without prompt as shown below:
C:\Users\fyicenter>type test.cnf # unnamed section of generic options default_md = md5 # default section for "req" command options [req] input_password = fyicenter prompt = yes distinguished_name = my_req_dn_prompt [my_req_dn_prompt] # Minimum of 4 bytes are needed for common name commonName = Common Name commonName_default = FYIcenter.com CA # ISO2 country code only countryName = Country Name countryName_default = US # State is optional, no minimum limit stateOrProvinceName = State stateOrProvinceName_default = NY # City is required localityName = City localityName_default = New York # Organization is optional organizationName = Organization organizationName_default = FYIcenter.com # Organization Unit is optional organizationalUnitName = Department organizationalUnitName_default = IT # Email is optional emailAddress = Email emailAddress_default = ca@fyicenter.com C:\Users\fyicenter>\local\openssl\openssl.exe OpenSSL> req -new -key rsa_test.key -out test.csr -config test.cnf -batch OpenSSL> req -in test.csr -text -noout Certificate Request: Data: Version: 0 (0x0) Subject: CN=FYIcenter.com CA, C=US, ST=NY, L=New York, O=FYIcenter.com, OU=IT/emailAddress=ca@fyicenter.com ...
The output confirms that "req -new -batch" uses DN default values without prompting the user.
⇒ OpenSSL "req -new" - "no objects specified in config file" Error
2016-10-29, 2060👍, 0💬
Popular Posts:
How to see more security related information on View Page Info in Firefox? To see more security rela...
How to use the "keytool -list" command? I want to see what in the keystore file. Here is an example ...
Certificate Summary: Subject: Security Communication RootCA1 Issuer: Security Communication RootCA1 ...
Certificate Summary: Subject: Entrust.net Certification Authority (2048) Issuer: Entrust.net Certifi...
Why I am getting an error: "CryptoException: Could not save keystore"? when exporting my 4096-bit ke...