Requirements:
- OpenSSL installed
1. Download the template configuration file: HERE
(In order to open the link it may be necessary to press Ctrl or Shift while clicking on the link (depending on the browser and operating system used)).
2. Adjust configuration file if SubjectAltNames (multiple DNS names) are to be used:
o Line 34, remove hash symbol (#) before "req_extensions = v3_req"
o Line 67, remove hash symbol (#) before "subjectAltName"
o Replace DNS names with desired parameters. The primary DNS name must also be entered. Formatting must be kept as follows: DNS:XYZ1..., DNS:XYZ2..., DNS: XYZ3....
3. Execute command in command line:
openssl req -new -config zih-generic-req.conf -keyout privkey.pem -outform PEM -out certreq.pem -nodes
4. The following parameters are already set and must be confirmed with [ENTER]:
Country name
Federal state
Location name
Organization name
5. The following parameters must be entered manually:
Unique DNS name: XYZ.tu-dresden.de (complete host name)
E-mail address: admin@tu-dresden.de (E-mail address of the contact person)
Note: The 'Unique DNS Name' must also be entered manually if it is already used in the SubjectAltNames
6. The directory now contains the private key (privkey.pem) and the certificate request (certreq.pem)