Collections:
Other Resources:
OpenSSL "policy" Options for "ca" Command
What are policy options in the configuration file for the OpenSSL "ca" command?
✍: FYIcenter.com
Policy options in the configuration file are used by the OpenSSL "ca" command
for 2 purposes:
Policy options must provided in a named section, like [my_ca_policy], in the configuration file. Then you can:
A policy option is defined with the DN field name and one of 3 possible values: "optional" - value not required for this DN field, "supplied" - value required for this DN field, "match" - value must match between subject and issuer.
Below is a good example of policy option section. It requires only the "commonName" field to have value. And "commonName" will be listed as the first field in the subject.
# section for DN field validation and order [my_ca_policy] commonName = supplied countryName = optional stateOrProvinceName = optional localityName = optional organizationName = optional organizationalUnitName = optional emailAddress = optional
⇒ Simple Working Configuration File for OpenSSL "ca"
2016-09-04, ∼5962🔥, 0💬
Popular Posts:
Certificate Summary: Subject: TrustAsia RSA DV TLS CA G3 Issuer: USERTrust RSA Certification Authori...
Why am I getting the "Could not initialize the application's security component" error when staring ...
Certificate summary - Owner: *.wordpress.com, Domain Control Validated Issuer: Go Daddy Secure Certi...
Certificate summary - Owner: *.free.fr, Domain Control Validated - RapidSSL(R), See www.rapidssl.com...
Certificate Summary: Subject: *.fritz.box Issuer: COMPRION CERT.CI.ECDSA (BrainpoolP256R1) Expiratio...