Certificate generation – HID Wallix WAB and CMS User Manual

Page 5

Advertising
background image

P 5

External Use | 4/24/2012 | © 2012 ActivIdentity

4.0 Certificate generation

1. Download and install Openssl (

http://gnuwin32.sourceforge.net/packages/openssl.htm

)

2. Extract the CMS root CA private key and certificate from the p12 of CMS Appliance

pkcs12 -in ActivIDCMS1.p12 -nocerts -out ca.key

pkcs12 -in ActivIDCMS1.p12 -clcerts -nokeys -out ca.crt

3. Generate Wallix Web server keys

genrsa -des3 -out server.key 1024

4. Remove the password from the key - you first need to copy the key in server.key.org

rsa -in server.key.org -out server.key

5. Generate CSR for the Web server

req -new -key server.key -out server.csr

6. Create server certificate from CMS CA

x509 -req -days 360 -in server.csr -CA ca.crt -CAkey ca.key -CAcreateserial -out server.crt

7. Create a p12 file for the Wallix Web Server

pkcs12 -export -in server.crt -inkey server.key -out server.p12

8. Extract private key and pem from p12 of the Wallix Web server

pkcs12 -in server.p12 -clcerts -nokeys -out server.pem

9. Extract private key and pem from p12 of the CMS CA

pkcs12 -in ActivIDCMS1.p12 -clcerts -nokeys -out ca.pem

Advertising
See also other documents in the category HID Equipment: