[openssl-users] SubjectAltName syntax in openssl.cnf

Tue Oct 2 13:11:46 UTC 2018

Hello,

That syntax looks correct, yes.  It belongs in the [section] name you are passing to the "-extensions" argument on the "openssl ca" command when issuing the certificate.

I hope this helps.
  -Dave

> On Oct 2, 2018, at 05:47, DUPALUT, Benjamin <benjamin.dupalut at esiee.fr> wrote:
> 
> Hello,
> 
> Does anyone, please, have informations about my question ?
> 
> Thanks in advance.
> 
> Cordialement,
> 
> Benjamin Dupalut
> Ingénieur système et réseau
> Service Informatique, Télécommunications, Audiovisuel et Reprographie (SITAR)
> ESIEE Paris
> 2 bd Blaise Pascal - 93162 Noisy-le-Grand Cedex
> T : +33 1 45 92 66 17
> benjamin.dupalut at esiee.fr <mailto:benjamin.dupalut at esiee.fr>
> www.esiee.fr <http://www.esiee.fr/> / www.cci-paris-idf.fr <http://www.cci-paris-idf.fr/>
> 
> 
> Le ven. 28 sept. 2018 à 18:00, DUPALUT, Benjamin <benjamin.dupalut at esiee.fr <mailto:benjamin.dupalut at esiee.fr>> a écrit :
> Hello,
> 
> i Have to set a SubjectAltName for a server certificate but documentations on the web does not provide the same syntax.
> 
> Is this syntax correct ?
> 
> subjectAltName=DNS:test.example.com <http://test.example.com/>
> 
> Also, does it belong in the [ usr_cert ] section ?
> 
> Thank you for your help.
> 
> Regards,
> 
> Benjamin Dupalut
> Ingénieur système et réseau
> Service Informatique, Télécommunications, Audiovisuel et Reprographie (SITAR)
> ESIEE Paris
> 2 bd Blaise Pascal - 93162 Noisy-le-Grand Cedex
> T : +33 1 45 92 66 17
> benjamin.dupalut at esiee.fr <mailto:benjamin.dupalut at esiee.fr>
> www.esiee.fr <http://www.esiee.fr/> / www.cci-paris-idf.fr <http://www.cci-paris-idf.fr/>
> -- 
> openssl-users mailing list
> To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20181002/e19fec43/attachment.html>