[openssl-users] Personal CA: are cert serial numbers critical?
Viktor Dukhovni
openssl-users at dukhovni.org
Wed Aug 16 17:12:34 UTC 2017
> On Aug 16, 2017, at 12:52 PM, Robert Moskowitz <rgm at htt-consult.com> wrote:
>
> Which is also a problem in openssl. You have to put the SAN into the cnf file. There are a number of hacks to do this from the command line.
Yep. For an approach that uses "bash" in-line files see:
https://github.com/openssl/openssl/blob/master/test/certs/mkcert.sh#L95
--
Viktor.
More information about the openssl-users
mailing list