Revoke old certificate
C:\OpenSSL-Win32\bin>openssl ca -policy policy_anything -cert certs/ca.cer -keyfile keys/ca.key -revoke certs/iis.cer
Using configuration from C:\OpenSSL-Win32\bin\openssl.cfg
Loading 'screen' into random state - done
Enter pass phrase for keys/ca.key:
Revoking Certificate 100001.
Data Base Updated
Create the new cert
C:\OpenSSL-Win32\bin>openssl ca -policy policy_anything -cert certs/ca.cer -in ssl/sslkey.txt -keyfile keys/ca.key -days 30 -out certs/iis2.cer
C:\OpenSSL-Win32\bin>openssl ca -policy policy_anything -cert certs/ca.cer -keyfile keys/ca.key -revoke certs/iis.cer
Using configuration from C:\OpenSSL-Win32\bin\openssl.cfg
Loading 'screen' into random state - done
Enter pass phrase for keys/ca.key:
Revoking Certificate 100001.
Data Base Updated
Create the new cert
C:\OpenSSL-Win32\bin>openssl ca -policy policy_anything -cert certs/ca.cer -in ssl/sslkey.txt -keyfile keys/ca.key -days 30 -out certs/iis2.cer
No comments:
Post a Comment