Create SAN (Subject Alternative Names) certificate with OpenSSL
Posted: Thu Sep 07, 2017 5:22 pm
Create a file named san.cnf with the following information:
Use the following command to generate CSR and key:
Use the following command to verify CSR for SAN:
DNS:bestflare.com, DNS:usefulread.com, DNS:chandank.com
Code: Select all
[ req ]
default_bits = 2048
distinguished_name = req_distinguished_name
req_extensions = req_ext
[ req_distinguished_name ]
countryName = Country Name (2 letter code)
stateOrProvinceName = State or Province Name (full name)
localityName = Locality Name (eg, city)
organizationName = Organization Name (eg, company)
commonName = Common Name (e.g. server FQDN or YOUR name)
[ req_ext ]
subjectAltName = @alt_names
[alt_names]
DNS.1 = bestflare.com
DNS.2 = usefulread.com
DNS.3 = chandank.com
Code: Select all
openssl req -out sslcert.csr -newkey rsa:2048 -nodes -keyout private.key -config san.cnf
Code: Select all
# openssl req -noout -text -in sslcert.csr | grep DNS