How to create certificate for client side ssl?


If you have designed a Web platform that uses client-side  SSL authentication you probably need to create a client SSL certificate to share with your clients. I added steps of creating a new Client certificate with OpenSSL commands.

At the start of  operation we  assume that you  have these files;

  • Server  SSL  Root  CA (CasesupRootCA.crt)
  • Server  SSL  Root  Pem (CasesupRootCA.pem)

Step 1: Create  Certificate Request  File

#openssl req -out CasesupClient.csr -new -newkey rsa:2048 -nodes -keyout CasesupClient.key

Step 2:Sign this request with  ROOT CA

#openssl x509 -req -days 765 -in CasesupClient.csr -CA CasesupRootCA.crt -CAkey CasesupRootCA.pem -set_serial 01 -out CasesupClient.crt

Step 3:Create  PFX  file to use HTTPS  request

​​​​​​​#openssl pkcs12 -export -out CasesupClient.pfx -inkey CasesupClient.key -in CasesupClient.crt

 

Tagged In:

I'm a IT Infrastructure and Operations Architect with extensive experience and administration skills and works for Turk Telekom. I provide hardware and software support for the IT Infrastructure and Operations tasks.

205 Total Posts
Follow Me