Re: https and self signed

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]



On Wed, 15 Jun 2016, John R Pierce wrote:

On 6/15/2016 6:47 AM, Jerry Geis wrote:
 How do I get past this? I was looking to just self sign for https.

in my admittedly limited experience with this stuff, you need to create your own rootCA, and use that to sign your certificates, AND you need to take the public key of the rootCA and import it into any trust stores that will be used to verify said certificates.

The EasyRSA scripts make creating and using your own Certificate Authority as painless as X.509 can be (which is to say, there will still be some pain). You can find them in the OpenVPN distribution tarball or at GitHub:

  https://github.com/OpenVPN/easy-rsa

--
Paul Heinlein <> heinlein@xxxxxxxxxx <> http://www.madboa.com/
_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
https://lists.centos.org/mailman/listinfo/centos



[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]
  Powered by Linux