Difference between revisions of "Template:Generating certificates and keys"
From Teltonika Networks Wiki
(4 intermediate revisions by 2 users not shown) | |||
Line 2: | Line 2: | ||
<ul> | <ul> | ||
− | <li>Now we can start generating the certificates and keys. Begin with the <b>certificate authority</b> (<b>CA</b>) - the root certificate file that will be used to sign other certificates and keys:<pre>./easyrsa build-ca nopass</pre></li> | + | <li>Now we can start generating the certificates and keys. Begin with the <b>certificate authority</b> (<b>CA</b>) - the root certificate file that will be used to sign other certificates and keys: |
− | <li>Next, build the <b>server</b> certificate and key:<pre>./easyrsa build-server-full server nopass</pre></li> | + | <ul> |
− | <li>Next, build certificates and keys for the <b>clients</b>:<pre>./easyrsa build-client-full Client1 nopass</pre>< | + | <pre>./easyrsa build-ca nopass</pre> |
− | <li>Lastly, generate <b>Diffie Hellman parameters</b>:<pre>./easyrsa gen-dh</pre></li> | + | </ul> |
+ | </li> | ||
+ | <li>Next, build the <b>server</b> certificate and key: | ||
+ | <ul> | ||
+ | <pre>./easyrsa build-server-full server nopass</pre> | ||
+ | </ul> | ||
+ | </li> | ||
+ | <li>Next, build certificates and keys for the <b>clients</b>: | ||
+ | <ul> | ||
+ | <pre>./easyrsa build-client-full Client1 nopass</pre> | ||
+ | </ul><b>Note</b>: replace 'Client1' with this client's Common Name (CN). | ||
+ | </li> | ||
+ | <li>Lastly, generate <b>Diffie Hellman parameters</b>: | ||
+ | <ul> | ||
+ | <pre>./easyrsa gen-dh</pre> | ||
+ | </ul> | ||
+ | </li> | ||
</ul> | </ul> | ||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− |
Revision as of 12:34, 29 October 2020
Step 3: generating certificates and keys
- Now we can start generating the certificates and keys. Begin with the certificate authority (CA) - the root certificate file that will be used to sign other certificates and keys:
./easyrsa build-ca nopass
./easyrsa build-server-full server nopass
./easyrsa build-client-full Client1 nopassNote: replace 'Client1' with this client's Common Name (CN).
./easyrsa gen-dh