Categories:
DH Keys (39)
DSA Keys (69)
EC Keys (335)
Firefox (32)
General (13)
Google Chrome (25)
Intermediate CA (152)
Java VM (20)
JDK Keytool (25)
Microsoft CertUtil (26)
Mozilla CertUtil (18)
OpenSSL (237)
Other (17)
Portecle (38)
Publishers (1963)
Revoked Certificates (30)
Root CA (87)
RSA Keys (1812)
Tools (47)
Tutorial (7)
What Is (21)
Windows (129)
Collections:
Other Resources:
OpenSSL "policy" Options for "ca" Command
What are policy options in the configuration file for the OpenSSL "ca" command?
✍: FYIcenter.com
Policy options in the configuration file are used by the OpenSSL "ca" command
for 2 purposes:
Policy options must provided in a named section, like [my_ca_policy], in the configuration file. Then you can:
A policy option is defined with the DN field name and one of 3 possible values: "optional" - value not required for this DN field, "supplied" - value required for this DN field, "match" - value must match between subject and issuer.
Below is a good example of policy option section. It requires only the "commonName" field to have value. And "commonName" will be listed as the first field in the subject.
# section for DN field validation and order [my_ca_policy] commonName = supplied countryName = optional stateOrProvinceName = optional localityName = optional organizationName = optional organizationalUnitName = optional emailAddress = optional
⇒ Simple Working Configuration File for OpenSSL "ca"
2016-09-04, 1421👍, 0💬
Popular Posts:
Certificate Summary: Subject: T-TeleSec GlobalRoot Class 2 Issuer: T-TeleSec GlobalRoot Class 2 Expi...
How to specify those intermediate CA certificates that form the signing chain for the server certifi...
Do you want to learn how to manage certificates for Java VM (Virtual Machine) on Windows? Here is a ...
How to install "JCE (Java Cryptography Extension) Unlimited Strength Jurisdiction Policy Files"? I w...
I need a certificate to connect my facebook-profile and my hotmail. I have not been able to find the...