Acquiring and Using
Application Certificates
INDEX:
1. Acquiring an Application Certificatea. Generate an rsa key
b. Generate a request for a certificate
Where to send the certificate request
Obtaining the mitClient.cer
2. Creating a java keystore containing a Application Certificate
3. Creating a server trust store for use with an application
Obtaining the mitca.cer
| Wiki Markup |
|---|
4. Using the keystore with an application This document addresses only how to acquire for an application certificate and how to create a Java keystore that can be used by an application. This is not a document on how to use SSL
*1.** * *Acquiring a Application Certificate*
a. Generate an rsa key
For UNIX or LINUX systems:
On the system you want the certificate for:
1. Create a directory which will be used to for generating the certificate request.
2. cd to the newly created directory.
3. Now generate some random stuff by doing the following command lines:
*ps > foo*
*ps \-elf{*}* * *>>* * *{*}foo*
4. Execute the following command:
*openssl genrsa \-rand foo 1024* * **>* * **\[appname\]-key.pem*
_where \[appname\] matches the name the final certificate will apply to, i.e. for "foo.app.mit.edu," you would name this file foo-key.pem_
For WINDOWS systems:
*Generate an rsa key:*
1. Create a directory which will be used to for generating the certificate request.
2. cd to the newly created directory.
3. Execute the following command:
*openssl genrsa 1024{*}* * *>** * *\[appname\]-key.pem* |
| Wiki Markup |
|---|
_where \[appname\] matches the name the final certificate will apply to, i.e. for "foo.app.mit.edu," you would name this file foo-key.pem_
|
...