Add to Favorites | Login | Register
Network Security Internet Technology Development Database Servers Mobile Phone Android Software Apple Software Computer Software News IT Information

In addition to Weibo, there is also WeChat

Please pay attention

WeChat public account

Shulou

About us Contact us

NetScaler creates a multiple domain name certificate (SAN)

2025-02-28 Update From: SLTechnology News&Howtos shulou NAV: SLTechnology News&Howtos > Network Security >

Share

Shulou(Shulou.com)06/01 Report--

1. Create an OpenSSL configuration file on the local computer by modifying the following code to the fields you need.

Note 1: in the example used in this article, the configuration file is named "req.conf".

Note 2: "req_extensions" will put the alternate name of the subject in CSR, while "x509_extensions" will be used when creating the actual certificate file.

[req]

Distinguished_name = req_distinguished_name

Req_extensions = v3_req

Prompt = no

[req_distinguished_name]

C = CN

ST = province

L = city

O = company

OU = organizational unit

CN = www.company.com

[v3_req]

KeyUsage = keyEncipherment, dataEncipherment

ExtendedKeyUsage = serverAuth

SubjectAltName = @ alt_names

[alt_names]

DNS.1 = www.company.com

DNS.2 = company.com

DNS.3 = www.company.net

DNS.4 = company.net

two。 Upload the file to the / nsconfig / ssl directory on the NetScaler device.

3. Log in to the NetScaler command line interface as nsroot and switch to the shell prompt.

Run the following command to create a certificate signing request and a new key file (note that due to the CA version, you may need to change sha256 to sha1):

Shell

Cd / nsconfig/ssl

Openssl req-new-out company.com.csr-newkey rsa:2048-nodes-sha256-keyout company.com.key.temp-config req.conf

Run the following command to verify the certificate signing request:

Openssl req-text-noout-verify-in company.com.csr

Run the following command to move the Key file to the correct format used on NetScaler:

Openssl rsa-in company.com.key.temp-out company.com.key

Rm company.com.key.temp

4. Download the certificate signing request file "company.com.csr" and provide it to your certification authority for signature.

5. Upload the certificate provided by the certification authority to the / nsconfig/ssl directory on the NetScaler device and install the certificate using the "company.com.key" file you created earlier.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.

Views: 0

*The comments in the above article only represent the author's personal views and do not represent the views and positions of this website. If you have more insights, please feel free to contribute and share.

Tag Search: File certificate command run organization directory device configuration subject code company unit name city field actual key prompt format version vpn macOS Linux MariaDB MySQL Docker Shulou Information Shulou Technology Shulou Tech Info OPPO Reno Redmi Xiaomi NVidia Microsoft Huawei Apple Linux Redmi Apple Xiaomi Microsoft Shulou Technology MySQL NVidia vpn Huawei Shulou Tech Info Shulou Information MariaDB Docker OPPO Reno macOS Linux Redmi Apple Xiaomi Microsoft Shulou Technology MySQL NVidia vpn Huawei Shulou Tech Info Shulou Information MariaDB Docker OPPO Reno macOS

Share To

Related

Network Security

More Network Security >

Latest Network Security More Network Security >

Latest Internet Technology More Internet Technology >

Latest Development More Development >

Latest Database More Database >

Latest Servers More Servers >

Latest Mobile Phone More Mobile Phone >

Latest Android Software More Android Software >

Latest Apple Software More Apple Software >

Latest Computer Software News More Computer Software News >

Latest IT Information More IT Information >

Wechat

About us Contact us Product review car news thenatureplanet

© 2024 shulou.com SLNews company. All rights reserved.

12
Report