|
|
|
SSL uses keys to encrypt and decrypt messages. Keys come in pairs: public key, and a private key. With OpenSSL, the private key contains the public key information, so you do not generate a public key separately.
Keys use various cryptographic algorithms and key exchange methods. For generating private keys, use the RSA key exchange method with the Date Encryption Standard (DES) cryptographic algorithm. The following is a UNIX example for an openssl command:
openssl genrsa -des3 -out server.key
The key output file is encrypted in ASCII PEM (from “Privacy Enhanced Mail") format.
Because the file is encrypted, you are prompted for a passphrase to protect it, you can decrypt it later if necessary. Do not use the -des3 argument in the command line, if you do not want your key to be protected.
Important! Do not use the -des3 option if you are running on Windows. The Agent for SharePoint does not start if there is a prompt for a passphrase.
To view the details of this RSA key, enter the following command:
openssl rsa -noout -text -in server.key
| Copyright © 2012 CA. All rights reserved. | Tell Technical Publications how we can improve this information |