Benutzer-Werkzeuge
lx:ucs:ca
Unterschiede
Hier werden die Unterschiede zwischen zwei Versionen angezeigt.
| Beide Seiten der vorigen RevisionVorhergehende ÜberarbeitungNächste Überarbeitung | Vorhergehende Überarbeitung | ||
| lx:ucs:ca [02.04.2025 18:03] – how to create a CodeSigning Cert Andy Haubenschmid | lx:ucs:ca [02.04.2025 21:06] (aktuell) – [CodeSigning] Andy Haubenschmid | ||
|---|---|---|---|
| Zeile 74: | Zeile 74: | ||
| - create a new cert by using univention-certificate new, use a name you recognize as CS Cert | - create a new cert by using univention-certificate new, use a name you recognize as CS Cert | ||
| - create a special extension file | - create a special extension file | ||
| - | - generate the csr again manually | + | - generate the cert again manually |
| - | - sign it by the ca again by issuing univention-certificate renew | + | - use this cert for signing |
| < | < | ||
| Zeile 82: | Zeile 81: | ||
| declare -x ExportPassword=SuperSecurePasswordForP12File | declare -x ExportPassword=SuperSecurePasswordForP12File | ||
| - | grep output_password / | ||
| echo \(`date -d 18-Oct-2027 +' | echo \(`date -d 18-Oct-2027 +' | ||
| declare -x days=`cat days` | declare -x days=`cat days` | ||
| Zeile 94: | Zeile 92: | ||
| basicConstraints | basicConstraints | ||
| subjectAltName | subjectAltName | ||
| - | extendedKeyUsage | + | extendedKeyUsage |
| [alt_names] | [alt_names] | ||
| DNS.1 = ${CertName} | DNS.1 = ${CertName} | ||
| " > code_sign_cert.conf | " > code_sign_cert.conf | ||
| + | grep output_password / | ||
| openssl x509 -req -CA ../ | openssl x509 -req -CA ../ | ||
lx/ucs/ca.1743616989.txt.gz · Zuletzt geändert: 02.04.2025 18:03 von Andy Haubenschmid