How to generate a wildcard cert CSR with a config file for OpenSSL

Published in

curiouscaloo

1 min readJun 7, 2017

The code snippet

$ mkdir domain.com.ssl && cd domain.com.ssl
$ openssl genrsa -out ./domain.com.key 2048$ openssl req -config csr.conf -new  -key ./domain.com.key -out ./domain.com.csr -verbose

First though, the csr.conf file looks like this

[ req ]
default_bits       = 4096
default_md         = sha512
default_keyfile    = domain.com.key
prompt             = no
encrypt_key        = no
distinguished_name = req_distinguished_name# distinguished_name
[ req_distinguished_name ]
countryName            = "DE"                     # C=
localityName           = "Berlin"                 # L=
organizationName       = "My Company"             # O=
organizationalUnitName = "Departement"            # OU=
commonName             = "*.domain.com"           # CN=
emailAddress           = "me@domain.com"          # CN/emailAddress=

Guides that help:

How to create multidomain certificates using config files

openssl can make life easy be creating its keys, CSRs and certificates on the basis of config files. Creating these…

apfelboymchen.net

Generate a CSR with OpenSSL

The Rackspace Cloud is not a certificate authority (and does not resell SSL certificates), so you need to go to a third…

support.rackspace.com

How to generate a wildcard cert CSR with a config file for OpenSSL

How to create multidomain certificates using config files

openssl can make life easy be creating its keys, CSRs and certificates on the basis of config files. Creating these…

Generate a CSR with OpenSSL

The Rackspace Cloud is not a certificate authority (and does not resell SSL certificates), so you need to go to a third…

The Most Common OpenSSL Commands

One of the most versatile SSL tools is OpenSSL which is an open source implementation of the SSL protocol. There are…

Written by pascalwhoop