Differences

This shows you the differences between two versions of the page.

--- centos_7_tls_certificates [2015/04/05 13:30] – [Server key and certificate] admin
+++ centos_7_tls_certificates [2021/10/09 15:14] (current) – external edit 127.0.0.1
@@ Line 1: / Line 1: @@
 {{tag>[centos7 linux tls ssl]}}
-~~TOC~~
 =====TLS - CentOS 7.x=====
@@ Line 16: / Line 15: @@
 Common name: <your server's FQDN></code>
-  * Sign server certificate, valid for 3 years:<code>openssl x509 -req -CA ca.crt -CAkey ca.key -days 1825 -extensions usr_cert -sha256 -set_serial 01 -in server.csr -out server.crt</code>
+  * Sign server certificate, valid for 5 years:<code>openssl x509 -req -CA ca.crt -CAkey ca.key -days 1825 -extensions usr_cert -sha256 -set_serial 01 -in server.csr -out server.crt</code>
 =====Add CA certificate to trust store=====
@@ Line 27: / Line 26: @@
   * Test remote connection:<code>openssl s_client -showcerts -connect my.webserver.com:443
-Check for:     Verify return code: 18 (self signed certificate)
+Check for:   Verify return code: 0 (ok) </code>
-or             Verify return code: 0 (ok) </code>
+  * Lookup certificate details:<code>openssl x509 -in server.crt -noout -text</code>