How can I generate a valid CSR (Certificate Signing Request) file on the Aris server. We have our own internal CA and want to generate a SSL Certificate for Aris.
Hi,
I am not an expert but these are the commands used by our system admin to create the certificate in an ARIS compatible format:(I hope it would help)
openssl pkcs12 -in "C:\TEMP\ARIS\arisserver.pfx" -out "C:\TEMP\ARIS\arisserver\arisserver.pem" -nodes
openssl rsa -in "C:\TEMP\ARIS\arisserver\arisserver.pem" -out "C:\TEMP\ARIS\arisserver\arisserver.key"
openssl pkcs12 -in "C:\TEMP\ARIS\arisserver.pfx" -out "C:\TEMP\ARIS\arisserver\arisserver.crt" -nodes -nokeys
Pay attention that the crt certificate has to be added to each client installation.
BR
Adar
It's quite easy. On your application server use OpenSSL to create a CSR. Use the following command:
openssl req -out CSR.csr -new -newkey rsa:2048 -nodes -keyout privateKey.key
Then fill in the requested fields.
Send the output (the CSR file) to your internal CA. They will send you the new certificate.