Collections:
Other Resources:
OpenSSL "policy" Options for "ca" Command
What are policy options in the configuration file for the OpenSSL "ca" command?
✍: FYIcenter.com
Policy options in the configuration file are used by the OpenSSL "ca" command
for 2 purposes:
Policy options must provided in a named section, like [my_ca_policy], in the configuration file. Then you can:
A policy option is defined with the DN field name and one of 3 possible values: "optional" - value not required for this DN field, "supplied" - value required for this DN field, "match" - value must match between subject and issuer.
Below is a good example of policy option section. It requires only the "commonName" field to have value. And "commonName" will be listed as the first field in the subject.
# section for DN field validation and order [my_ca_policy] commonName = supplied countryName = optional stateOrProvinceName = optional localityName = optional organizationName = optional organizationalUnitName = optional emailAddress = optional
⇒ Simple Working Configuration File for OpenSSL "ca"
2016-09-04, 4907🔥, 0💬
Popular Posts:
How to install OpenSSL on Windows? I have downloaded the "openssl-0.9.8h-1-setup. exe"on the desktop...
How to see the signing chain of a server certificate in Safari 5? I want to know the root CA who sig...
What is PKI (Public-Key Infrastructure)? Public-Key Infrastructure (PKI) is a public-key cryptograph...
Certificate Summary: Subject: AME INFRA CA 01 Issuer: ameroot Expiration: 2025-09-15 03:15:08 UTC Ke...
What is Portecle? I heard that Portecle is nice certificate management tool. Portecle is a user frie...