3.3.5 hwscertutil reqgen
Creating a Certificate Signing Request (CSR)
Synopsis
hwscertutil reqgen [-sign {MD5|SHA1|SHA224|SHA256|SHA384|SHA512}] -key key-file -out CSR-file
Storage location
Application Server installation directory/httpsd/sbin
Function
This subsection describes how to use the hwscertutil reqgen command to create a Certificate Signing Request (CSR). The created CSR file is submitted to the CA, which then issues the signed certificate. The CSR is created in the format conforming to PKCS #10.
Execution permission
Superuser
Arguments
- -sign {MD5|SHA1|SHA224|SHA256|SHA384|SHA512}
-
Specify the signature algorithm used when the CSR is created.
The following values can be specified:
-
-MD5 : md5WithRSAEncryption is used.
-
-SHA1: sha1WithRSAEncryption is used.
-
-SHA224: sha224WithRSAEncryption is used.
-
-SHA256: sha256WithRSAEncryption is used.
-
-SHA384: sha384WithRSAEncryption is used.
-
-SHA512: sha512WithRSAEncryption is used.
Default value: SHA1
-
- -key key-file
-
Specify the Web server private key file.
- -out CSR-file
-
Specify the file to which the created CSR is output.
Examples
To create a Certificate Signing Request (CSR).
hwscertutil reqgen -sign SHA1 -key httpsdkey.pem -out httpsd.csr
httpsdkey.pem: Key file
httpsd.csr: CSR file
Exit Status
Exit Status |
Explanation |
---|---|
0 |
command executed successfully. |
Other than 0 |
error in executing the command. |