cd ~/openssl/ssl/misc/demoCA
~/openssl/bin/openssl req -nodes -new -keyout islab_key.pem \
-out islab_req.pem -days 3650 -config ~/openssl/ssl/openssl.cnf
#此处「-keyout」即为产生Private key之档名,我们以「islab_key.pem」为例
#,您可自行设定。而「-out」则产生CSR档,我们以「islab_req.pem」为例。
Generating a 2048 bit RSA private key
................................ ..........................+++
................................ ................................................................+++
writing new private key to 'islab_key.pem'
-----
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [TW]:TW
State or Province Name (full name) [TAIWAN]:Taiwan
Locality Name (eg, city) []:Taichung
Organization Name (eg, company) [THU]:THU
Organizational Unit Name (eg, section) []:ISLAB
Common Name (eg, YOUR name) []:blave@islab.csie.thu.edu.tw
#Common Name请输入您所欲使用之名称,如此凭证产生后欲使用在 Email
#签章,则必须填入email名称;若此凭证欲使用在https,则必须填网址。
Email Address []:blave@islab.csie. thu.edu.tw
Please enter the following 'extra' attributes
to be sent with your certificate request
A challenge password []:[password]
An optional company name []:[company]
#以上两项可随意输入即可。 |