Table of Contents
Advertisement
Chapter 3. SSL Infrastructure
Option
--gen-server
,
-h
--help
,
-p=
--password=PASSWORD
,
-d=
--dir=BUILD_DIRECTORY
--server-key=FILENAME
--server-cert-req=FILENAME
--server-cert=FILENAME
--startdate=YYMMDDHHMMSSZ
--cert-expiration=SERVER_CERT_EXPIRE
--set-country=COUNTRY_CODE
--set-state=STATE_OR_PROVINCE
Description
Generate the Web server's SSL key
set, RPM and tar archive. This must
be issued with any of the remaining
options in this table.
Display the help screen with a list of
base options specific to generating
and managing a server key-pair.
The CA password. You will be
prompted for this if it's missing.
Record it in a safe manner.
Required for most commands - The
directory where certificates and
RPMs are built. The default is
.
./ssl-build
The Web server's SSL private key
filename. The default is
.
server.key
The Web server's SSL certificate
request filename. The default is
.
server.csr
The Web server's SSL certificate
filename. The default is
.
server.crt
The start date for server certificate
validity in the example format: year,
month, date, hour, minute, second
(two characters per value). Z stands
for Zulu and is required. The default
is one week before generation.
The expiration date of the server
certificate. The default is the number
of days until one day prior to epoch
rollover (or 01-18-2038).
The two-letter country code. The
default is US.
The state or province. The default is
North Carolina.
19
Advertisement
Table of Contents
