I grabed the openssl tools for windows from http://www.shininglightpro.com/products/Win32OpenSSL.html
did a standard install with the binaries in there own directory
as I was lazy kept everything running of the bin directory
modified teh openssl.cfg filed
dir = /OpenSSL-Win32/bin # Where everything is kept
created the following directories
keys
certs
crl
newcerts
created a file in the bin directory of 'serial'
contents of 100001
Then follow most of the guide from
http://www.dylanbeattie.net/docs/openssl_iis_ssl_howto.html
Setup a CA
* openssl genrsa -des3 -out keys/ca.key 1024
* openssl req -new -x509 -days 1001 -key keys/ca.key -out certs/ca.cer
Sign me CSR
* openssl ca cert certs/ca.cer -in requests/certreq.txt -keyfile keys/ca.key -days 360 -out certs/iis.cer
No comments:
Post a Comment