How to generate a wildcard cert CSR with a config file for OpenSSL

pascalwhoop
curiouscaloo
Published in
1 min readJun 7, 2017

The code snippet

$ mkdir domain.com.ssl && cd domain.com.ssl
$ openssl genrsa -out ./domain.com.key 2048
$ openssl req -config csr.conf -new -key ./domain.com.key -out ./domain.com.csr -verbose

First though, the csr.conf file looks like this

[ req ]
default_bits = 4096
default_md = sha512
default_keyfile = domain.com.key
prompt = no
encrypt_key = no
distinguished_name = req_distinguished_name
# distinguished_name
[ req_distinguished_name ]
countryName = "DE" # C=
localityName = "Berlin" # L=
organizationName = "My Company" # O=
organizationalUnitName = "Departement" # OU=
commonName = "*.domain.com" # CN=
emailAddress = "me@domain.com" # CN/emailAddress=

Guides that help:

--

--

pascalwhoop
curiouscaloo

Software Developer, Tech enthusiast, student, board sports and food lover