This repository has been archived by the owner on Jan 20, 2023. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 99
how to generate cert issued by lightwave ca
Sriram Nambakam edited this page Apr 6, 2017
·
8 revisions
-
Generate a Public/Private Key pair
Command:
/opt/vmware/bin/certool --genkey --privkey=<path to private key> --pubkey=<path to public key>
Example:
/opt/vmware/bin/certool --genkey --privkey=/home/joe/rui.key --pubkey=/home/joe/rui.pub
-
Create a config file for the Certificate Signing Request (CSR)
2.1 Create a text file conforming to the following template
# # Template file for a CSR request # # Country is needed and has to be 2 characters Country = US Name = CA Organization = VMware OrgUnit = VMware Engineering State = California Locality = Palo Alto IPAddress = 127.0.0.1 Email = [email protected] Hostname = server.acme.com
-
Get the Lightwave CA issue a certificate for this Key Pair
Command:
/opt/vmware/bin/certool --gencert --config=<path to CSR config file> --privkey=<path to private key> --cert=<path to generated cert file> --server=<IP Address/FQDN of Lightwave CA> --srp-upn=<User Principal Name in Lightwave Directory> --srp-pwd=<password> Note: The Lightwave User must be part of the "CAAdmins" Lightwave group.
Example:
/opt/vmware/bin/certool --gencert --config=/home/joe/rui.csr --privkey=/home/joe/rui.key --cert=/home/joe/rui.crt --server=dc-1.photon.local [email protected] --srp-pwd='Secret1!'
Note: Password will be prompted for if not provided on command line