Difference between revisions of "XMPP Server Certificates"

Jump to navigation Jump to search

XMPP Server Certificates (view source)

Revision as of 15:02, 29 April 2014

10 bytes added ,  15:02, 29 April 2014
Update RFC3910 to 6120
 
(Update RFC3910 to 6120)
(3 intermediate revisions by one other user not shown)
Line 1: Line 1:
This page provides an example of an OpenSSL configuration file that appears to generate Certificate Signing Requests (CSRs) and self-signed certificates that conform to the format defined in RFC 3920 (note: you need OpenSSL 0.9.8 or newer). If you find errors on this page, please fix them! Naturally you can create a certificate at the [http://www.xmpp.net/ XMPP ICA] and ask the ICA to create the CSR for you, so this step is not strictly necessary (other CAs may offer a similar service).
This page provides an example of an OpenSSL configuration file that appears to generate Certificate Signing Requests (CSRs) and self-signed certificates that conform to the format defined in RFC 6120 (note: you need OpenSSL 0.9.8 or newer). If you find errors on this page, please fix them! Naturally you can create a certificate at the [http://xmpp.net/ XMPP ICA] and ask the ICA to create the CSR for you, so this step is not strictly necessary (other CAs may offer a similar service).


<pre>
<pre>
Line 6: Line 6:
[ new_oids ]
[ new_oids ]


# RFC 3920 section 5.1.1 defines this OID
# RFC 6120 section 13.7.1.4 defines this OID


xmppAddr = 1.3.6.1.5.5.7.8.5
xmppAddr = 1.3.6.1.5.5.7.8.5
Line 36: Line 36:


basicConstraints                = CA:FALSE
basicConstraints                = CA:FALSE
extendedKeyUsage                = serverAuth,clientAuth
keyUsage                        = digitalSignature,keyEncipherment
subjectAltName                  = @subject_alternative_name
subjectAltName                  = @subject_alternative_name


Flow
165

edits

Retrieved from "https://wiki.xmpp.org/web/Special:MobileDiff/8356...8360"

Navigation menu