Collaborate Disseminate
I am looking into our current website certificate-management process and am looking for steps that may be unnecessary and can be simplified. The current process was created by our sysadmin who now left, and I am confused about step 1 below… Continue reading Why create a CSR on my own server to have it signed by a 3rd party?
I am trying to create a certificate signing request (CSR), whose CN contains a null byte. It should look something like this: CN = bad.com\0.good.com. I am using OpenSSL to create the request, but the created request only contains a 0, i.e… Continue reading Add null byte to hostname using OpenSSL
I was exploring SAN certs and was able to connect to the machine with domains specified in the SAN fields during CSR creation. But I was unable to connect to the machine with the common name specified in the CSR.
Below error is what I get … Continue reading Connection problems with common name as domain
[adblu] encountered the ever-present headphone problem with their Sennheiser Urbanite headphones – the cable broke. These headphones are decent, and despite the cable troubles, worth giving a new life to. …read more Continue reading Headphone Cable Trouble Inspires Bluetooth Conversion
I’m trying to understand the logical flow of SSL certificate.
Suppose I have a website running on a machine. I generate a CSR file that contains information (e.g. common name, organization, country, …) and my public key, so I sign those … Continue reading What is CA response after giving them the CSR?
I am aware that I can get the fingerprint of an x509 certificate by typing
openssl x509 -in certificate.crt -noout -fingerprint
But if I try to get the fingerprint of a CSR (openssl req -in certrequest.csr -fingerprint) I get
req: Unrecog… Continue reading Getting fingerprint of certificate signing request
I use the following command to create your private key and CSR (using the ECC algorithm):
openssl ecparam -out ECC.key -name prime256v1 -genkey -noout
openssl req -new -key ECC.key -out ECC.csr -sha256 -subj "/C=VN/O=Custom Organizati… Continue reading SSL certificate match with private key but doesn’t match with CSR
Let’s say you have a CSR that filled with incorrect data and you need to issue a certificate to the associated private key holder. The private key holder will not issue another CSR and will not disclose their private key. Can you overwrite… Continue reading Can any field in a CSR be overwritten in the issued cert?
I am new to HTTPs and want to have my web application on secure ports. For this, I asked our security department to issue certificates. And I provided them with the CSRs. The CSRs were generated on FQDNs which are not there in the URL.
For… Continue reading Certificates generated with a CSR having FQDN different than the URL of web application
I have gone through many websites to understand the CA and CSR working process but I am still confused.
I have generated testportal.crt CSR and sent it to CA to sign it.
CA signed testportal.crt with its public & private key pair, and … Continue reading How CSR & CA works [closed]