Thursday, January 15, 2015

SLES 12 - Certifcate Authority

In SLES 12, when you create a certificate authority from scratch using YaST, all the required files will be located in

/var/lib/CAM/CA name created in YaST

which includes the certificate, key, serial, index and openssl configuration as well.

So an easier way to sign a cert in command line is to go the above directory and place the CSR there before issuing the following command

openssl ca –md ‹md -in ‹csr› -out ‹certificate› -config openssl.cnf.tmpl