Table of Contents
Advertisement
Enter the Certificate name for the CA.
Cert. Name
Note: It could be any name to identify this certificate. Example: "CATest".
Choose the key length for generating the CA certificate.
The following values are available:
● 512: 512-bit keys are not secure and it's better to avoid this option.
Key Length
● 1024: 1024-bit keys are no longer sufficient to protect against attacks.
● 2048: 2048-bit keys are a good minimum. (Recommended).
● 4096: 4096-bit keys are accepted by nearly all RSA systems. Using 4096-bit keys will dramatically increase
generation time, TLS handshake delays, and CPU usage for TLS operations.
Choose the digest algorithm:
● SHA1: This digest algorithm provides a 160-bit fingerprint output based on arbitrary-length input.
Digest Algorithm
● SHA256: This digest algorithm generates an almost unique, fixed-size 256 bit hash.
Note: Hash is a one-way function, it cannot be decrypted back.
Enter the validity date for the CA certificate in days.
Expiration (D)
In our example, set to "120".
Select a country code from the dropdown list.
Country / Region
Example: "MA".
Enter a state name or province.
State / Province
Example: "Casablanca".
Enter a city name.
City
Example: "Casablanca".
Enter the organization's name.
Organization
Example: "GS".
Figure 49: Add CA Certificate
Advertisement
Table of Contents
