KU2, KU3, KU4: The newly created pair of keys for the application computer must be signed by a certificate authority. To this, a Certificate Si gn Request (CSR) must be created for this pair of keys.
Adequate administrative permissions
Parent topic: Creation of a Pair of Keys for the Application Computer
- Open a shell on the application computer on which the certificate authority has been prepared and log on as root user
- Execute the following command to switch to the new working directory of the certificate authority:
- Execute the following command in one line to create a certificate sign request for the pair of keys of the application computer.
The newly created certificate sign request is stored under the name tomcat_csr.pem in the current directory.
- Execute the following command to display the contents of the just created certificate sign request:
openssl req -in tomcat_csr.pem -text -noout