How to generate a wildcard cert CSR with a config file for OpenSSL
Published in
1 min readJun 7, 2017
The code snippet
$ mkdir domain.com.ssl && cd domain.com.ssl
$ openssl genrsa -out ./domain.com.key 2048$ openssl req -config csr.conf -new -key ./domain.com.key -out ./domain.com.csr -verbose
First though, the csr.conf file looks like this
[ req ]
default_bits = 4096
default_md = sha512
default_keyfile = domain.com.key
prompt = no
encrypt_key = no
distinguished_name = req_distinguished_name# distinguished_name
[ req_distinguished_name ]
countryName = "DE" # C=
localityName = "Berlin" # L=
organizationName = "My Company" # O=
organizationalUnitName = "Departement" # OU=
commonName = "*.domain.com" # CN=
emailAddress = "me@domain.com" # CN/emailAddress=
Guides that help: