this only ID card, if there is any doubt, you can go to the public security organs to confirm the authenticity of this identity card! Perfect
To use a certificate we need several key factors here:
1. Certification authority (CA), where CA is an authoritative institution.
2. Entity individual (private key, only individual holder)
3. Verification mechanism.
Process: The individual generates the key pair, the user sends his information with the pub
Convert the Java Keytools certificate to Openssl PEM file or keytools to export the private key file, keytoolspem
The process and operation of requesting a certificate from a Godaddy user was mentioned above;
Because Incapsula is used for https protection, you need to customize the certificate when adding a website.
Original address: http://www.lamppr.com/node/648
Generate a certificate using OpenSSL
1. How to generate RSA keys
OpenSSL genrsa-des3-out Privkey.pem 2048
This command generates a 2048-bit key with a password that is encrypted by the Des3 method, and if you do not want to enter the password every time, you can change it to:
How do I specify a 16-byte serial number when OpenSSL issues a certificate?
There was a point in signing the certificate using the OpenSSL function, the project explicitly requires specifying a 16-byte certificate sequence number, such as 0x4c530000000000000100020004000009,
The Apache SSL Certificate consists of two files: one is the. Key file and the other is the. CRT file. IIS uses the. pfx file. You only need to convert the. Key +. CRT file to the. pfx file and install it on IIS.
Step 1: Download the OpenSSL Software Package http://www.myssl.cn/download/OpenSSL_0.9.8.a_Win32.zip
Step 2: extract the package to the C: \ OpenSSL d
Reference:Http://www.cnblogs.com/lierle/p/5140187.htmlhttp://alvinhu.com/blog/2013/06/12/ creating-a-certificate-authority-and-signing-the-ssl-certificates-using-openssl-in-iis8/Http://brightli.blogspot.com/2013/05/opensslunable-to-access-democa.htmlIIS versionFinal resultsFull Operation screen Recording:Link: http://pan.baidu.com/s/1cdsRSy Password: 7fgqThe whole process went well and encountered a problem
The Afaria documentation mentions that you can generate a certificate request either with Mac computer keychain or Windows IIS.However, IIS generates a certificate request that Apple does not recognize, prompting invalid CertificateIt's too much trouble to build it with your Mac.
Get, grass civil OpenSSL generated.
D:\opens
The following describes how to use OpenSSL to load the certificate revocation list. This method can only load the Certificate Revocation List in PEM format.
# Include
# Include
# Include
# Include
Using namespace STD;
Void main ()
{
X509_crl * m_crl = NULL;
Bio * bio = NULL;
Bio = bio_new_file ("crltestpem. CRL", "R ");
If (Bio = NULL)
{
C
1. Generate Csr,keyOpenSSL req-new-newkey rsa:2048-sha256-nodes-out example_com.csr-keyout example_com.key-subj "/C=CN/ST=Beijing/L=Be Ijing/o=example inc./ou=web security/cn=example.com "The above domain name can be modified into their own domain2.CSR Turn CRTTo generate a CA self-signed certificate:OpenSSL Req-new-x509-key ca.key-out ca.crtYou can add the certificate Expiration Time option "-days 365".Can
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.