1

How do you specify the key size of a Certificate Signing Request?

view story
linux-howto

http://serverfault.com – I'm trying to generate a CSR with godaddy. I used the following commands to create the certificate: openssl req -new -nodes -keyout server.key -out server.csr openssl x509 -req -days 365 -in server.csr -signkey server.key -out server.crt But when I use the key generated in my server.csr file, I get the following error from godaddy: The CSR key length must be 2048 or 4096 How do I specify the key size of the CSR? P.S. I'm intending to use this on a domain hosted on heroku. (HowTos)

u85500's picture
Submitted by u85500 on 10/10/2012

Stories similar to How do you specify the key size of a Certificate Signing Request?

I've never set up an SSL on Linux before, but have a general idea of how it works. Server specs below if it helps:

Server: CentOS Linux 6 Workstation: Windows 7

So, I have 4 domains all of which share a single Magento installation and IP address. Assume one of my domains is "mywebsite1.com" I am trying to enable SSL just for this one domain for now, but I am running into errors.

How to use .cer files in Centos 18 weeks 19 hours ago

I'm new in linux.

I'm trying to setup a Geotrust SSL certificate for my Heroku app using the SSL Endpoint addon and the instructions at https://devcenter.heroku.com/articles/ssl-endpoint.

I generated my public key from my private key using:

openssl rsa -in server.orig.key -out server.key

and added to the heroku certs:

heroku certs:add server.crt server.key

Everything seemed to be fine.

We went through the steps of revoking an SSL Certificate used by our OpenLDAP server and renewing it but we are unable to start slapd.

Here are the commands we used:

openssl verify hostname_domain_com_cert.pem

We got back that the certificate was expired but "OK"

We revoked the certificate we'd been using:

openssl ca -revoke /etc/ssl/certs/hostname_domain_com_cert.pem

Revoking worked

I've generated a certificate using openssl and place it on the client's machine, but when I try to connect to my server using that certificate, I error mentioned in the subject line back from my server.

Here's what I've done.

I have Godaddy SSL certificate for one website on my dedicated server running Centos 5.3 / Apache 2.2.3. I have renewed certificate on Godaddy recently, however now it's showing as expired on my website. I've re-keyed certificate since and reuploaded domain.key, domain.crt and bundle.crt (example file names) files to the server, restarted apache, but the sertificate still shows as expired.

Issue with domain redirection 36 weeks 5 days ago

I have a flash games website which is hosted at godaddy server. But because of heavy traffic on my site the godaddy server gets down. So I changed the hosting to Midphase server. The strange thing is i have created new name servers and new database in my mid phase server but still the web site is coming from the godaddy server.

Local CA for remote web server 9 weeks 22 hours ago

I have two domains and the one I am in has a certificate authority server. The domain I am not in doesn't have a CA server. I want to certify https on that server so that I can get there without the cert warnings.

What I did: Created a CSR on the web server and generated a certificate on the CA. I then completed the CSR on the web server.

I'm not really sure where to start looking

When requesting a certificate, a server always gets the error message "You cannot request a certificate at this time because no certificate types are available". Then for each certificate the error is "The permissions on the certificate template do not allow the current user to enroll for this type of certificate".