Step 1: Creating private keys and certificates (2024)

Table of Contents
Before you begin Procedure Results What to do next

To improve security, create your own private key and acertificate instead of using the self-signed ones that are availablein BigFix Inventory bydefault. You can use openSSL to create a private key and a certificatesigning request (CSR) that can be transformed into a certificate afterit is signed by a certificate authority (CA).

Before you begin

This procedure is valid for all operating systems thatsupport openSSL.

If you are generating an encrypted privatekey in the pkcs8 format, add the following line to the installation_dir/jre/lib/security/java.security file:

See Also
Certificate and Key FormatsFrequently used OpenSSL CommandsFix the IIS 7 "No Private Key" Error Message - SSL.com

security.provider.10=org.bouncycastle.jce.provider.BouncyCastleProvider

Then,restart the BigFix Inventory server.

Procedure

  1. Open the command line.
  2. Create a new private key.
    openssl genrsa -des3 -out key_name.key key_strength -sha256

    Forexample, openssl genrsa -des3 -out private_key.key 2048 -sha256

    Where:

    -des3
    Enables password for the private key. This is an optional parameter.You can also enable password for an existing private key by usingthe following command:
    openssl rsa -des3 -in path_to_private_key.key-out key_name.key
    key_name
    File name for your new private key.
    key_strength
    Key strength, measured in bits. The maximum value that you canuse for BigFix Inventory is2048 bits.
  3. Create a certificate signing request (CSR). The requestis associated with your private key, and is later transformed intoa certificate.
    openssl req -new -key path_to_private_key.key -out csr_name.csr

    Forexample, openssl req -new -key private_key.key -out CSR.csr

    Where:

    path_to_private_key
    Path to your private key.
    csr_name
    File name for your certificate signing request (CSR).

    After you run the command, you are asked toprovide information that helps your users to identify your certificateand ensure that it can be trusted. The following excerpt from thecommand line is filled in with sample information:

    Country Name (2 letter code) [XX]: USState or Province Name (full name) []: New YorkLocality Name (eg, city) [Default City]: New YorkOrganization Name (eg, company) [Default Company Ltd]: HCL (eg, section) []: SoftwareCommon Name (eg, your name or your server's hostname) []: inventory.bigfix.comEmail Address []: inventory@bigfix.com

Results

After completing these steps, two files are created, your private key(.key) and the certificate signing request (.csr).

What to do next

Sign the request to transform it into the certificate. For information about how to createa private certificate authority (CA) to sign the request, see Signing certificates.
Step 1: Creating private keys and certificates (2024)
Top Articles
COVID-19 Thematic Website, Together, We Fight the Virus, Quarantine for Inbound Travellers - Frequently Asked Questions
Why Is Google Drive Upload So Slow? Reasons & Solutions
Bild Poster Ikea
Best Team In 2K23 Myteam
Winston Salem Nc Craigslist
Wannaseemypixels
America Cuevas Desnuda
Northern Whooping Crane Festival highlights conservation and collaboration in Fort Smith, N.W.T. | CBC News
Nc Maxpreps
Gunshots, panic and then fury - BBC correspondent's account of Trump shooting
Puretalkusa.com/Amac
New Day Usa Blonde Spokeswoman 2022
Best Restaurants In Seaside Heights Nj
Carter Joseph Hopf
Tugboat Information
Ncaaf Reference
Tcu Jaggaer
Yesteryear Autos Slang
Shemal Cartoon
No Hard Feelings Showtimes Near Cinemark At Harlingen
Somewhere In Queens Showtimes Near The Maple Theater
Babbychula
Optum Urgent Care - Nutley Photos
Elite Dangerous How To Scan Nav Beacon
Idle Skilling Ascension
Pioneer Library Overdrive
Federal Express Drop Off Center Near Me
Little Einsteins Transcript
Nurofen 400mg Tabletten (24 stuks) | De Online Drogist
Craigslist Sf Garage Sales
Little Caesars Saul Kleinfeld
Boondock Eddie's Menu
Jay Gould co*ck
Jefferson Parish Dump Wall Blvd
Bismarck Mandan Mugshots
Chatropolis Call Me
The Closest Walmart From My Location
Froedtert Billing Phone Number
Wunderground Orlando
The Largest Banks - ​​How to Transfer Money With Only Card Number and CVV (2024)
Craigslist en Santa Cruz, California: Tu Guía Definitiva para Comprar, Vender e Intercambiar - First Republic Craigslist
Doublelist Paducah Ky
Pink Runtz Strain, The Ultimate Guide
Craigslist Antique
Mountainstar Mychart Login
Egg Inc Wiki
Clock Batteries Perhaps Crossword Clue
Lightfoot 247
Gelato 47 Allbud
Kidcheck Login
Nfsd Web Portal
Latest Posts
Samuel Bankman-Fried Sentenced to 25 Years for His Orchestration of Multiple Fraudulent Schemes
How Do You Receive a Foreign Remittance in a Savings Account
Article information

Author: Patricia Veum II

Last Updated:

Views: 5514

Rating: 4.3 / 5 (64 voted)

Reviews: 95% of readers found this page helpful

Author information

Name: Patricia Veum II

Birthday: 1994-12-16

Address: 2064 Little Summit, Goldieton, MS 97651-0862

Phone: +6873952696715

Job: Principal Officer

Hobby: Rafting, Cabaret, Candle making, Jigsaw puzzles, Inline skating, Magic, Graffiti

Introduction: My name is Patricia Veum II, I am a vast, combative, smiling, famous, inexpensive, zealous, sparkling person who loves writing and wants to share my knowledge and understanding with you.