Verify that both the Key Usage and the Basic Constraints Certificate Extensions are now listed and click OKĬlick OK to complete the Root CA certificate generationĮnter a password to protect the private keyĪt this point the Root CA Certificate has been created With these selected, click OKĬlick the Green + button again and this time, select the Basic Constraints ExtensionĬheck the Subject is a CA box and click OK Select the Certificate Signing and CRL Sign attributes. You will see these are now listed under the Name field for the certificate.įor a Certificate Authority the Basic Constraints and Key Usage extensions are required. Select RSA as the Algorithm and select a Key Size ( typically 2048)Īfter clicking on OK, most of the certificate details will already be pre-populated but you can change the Signature Algorithm, Validity and Serial Number as required.Ĭomplete the Certificate Subject details as necessary (in the example above, we're providing a Common Name, an Organization Unit and an Organization Name), then click OK to save these details. Right-click within the KeyStore workspace to open the context menu and select the Generate Key Pair option from the menu The first step is to create a valid Root Certificate Authority that will be used to sign all end-user or intermediate CA certificates Start KeyStore Explorer and select Create a new KeyStore or if you have already had a keystore you can use Open an existing KeyStore KeyStore Explorer can be downloaded from Getting Started This Knowledgebase article demonstrates how you can use the KeyStore Explorer tools to generate a CA Root Certificate and end-user certificates for use with MarkLogic Server (for Application Servers which are SSL enabled) and for SSL based client authentication within your applications.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |