It’s often provided by good quality CA.
How to configure 2048 bit CSR for Jboss
step 1:
create keystore:
create keystore:
keytool -genkey -alias myalias -keyalg RSA -keysize 2048 -keystore mydomain.com.keystore
Fill in all the information that is asked. Please note when asked for:
What is your first and last name? – This is your actual common name, the name you are securing.
A keystore with the name powerdsr.com.keystore is generated.
step 2:
create csr request to CA [ Certificate Authority ]
step 2:
create csr request to CA [ Certificate Authority ]
keytool -certreq -alias myalias -file mydomain.csr.txt -keystore mydomain.com.keystore
cat mydomain.csr.txt and it should look something like:
—–BEGIN NEW CERTIFICATE REQUEST—–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—–END NEW CERTIFICATE REQUEST—–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—–END NEW CERTIFICATE REQUEST—–
No comments:
Post a Comment