These files allow setting a private, informal X509
and/or to request the creation and issue X509 certificates.
These files contain an illustration of somewhat unusual but
often very useful features of X509 certificates, for example
Common Names and multiple
domain names and wildcard domain names,
and multiple email addresses.
Please note that because of some limitations in the OpenSSL
configuration files, all of the final files are generated by
preprocessing the corresponding
.ini files listed
here, as specified in the
and the definitions common to all configuration files are contained
All files contain extensive comments, and in particular
default.ini contains a suitable list of references.
Please read all these references carefully and several times.
Unfortunately CA operation and certificate generation, even for
a private, informal CA, involves difficult concepts and complicated
details, especially with OpenSSL, and it is not something to be
attempted without an in depth understanding of the general issues
and of the peculiarities related to OpenSSL.
You probably will need to customize all all the files
in this directory to adapt them to your case. As they are here,
they are set up for a private CA called
Ltd. and for this to accept a request and grant a
certificate for the domain
If you need a simpler approach to generate simple certificates,
library comes with the
Name Last modified Size Description
Parent Directory - Makefile 26-Apr-2015 15:11 2.9K com.example.SSL_CertRequest.ini 26-Apr-2015 15:12 3.3K com.example.SSL_Certificate.ini 26-Apr-2015 15:12 2.1K com.example_CACertificate.ini 26-Apr-2015 15:12 3.1K default.ini 26-Apr-2015 15:12 16K