Sign the CSR with OpenSSL
Before you begin
- Generate a certificate signing request
- In the openssl.cnf file,
make sure the [ v3_ca
] section of the file includes this field and value:
basicConstraints = CA:TRUE
This value indicates that the certificate is a CA.
Complete this procedure to sign the CSR that
you generated in ETP with OpenSSL. Your CA must be configured with an OpenSSL configuration
file and include a generated public certificate and private key pair for CA
operations.