The CREATE command is used to create X.509 certificates.
Create certificate authority.
Command | Keyword | Value | Developer notes |
|---|---|---|---|
CREATE | CERTIFICATE | *AUTHORITY | Mandatory. Type of certificate. |
CA_CERTIFICATE_PATH | value | Mandatory. X509 certificate file. | |
CA_KEYSTORE_PATH | value | Mandatory. PKCS8 keystore. | |
CA_KEYSTORE_PASSWORD | value | Mandatory. Keystore password. | |
CA_EXPIRY_DATE | value | Mandatory. Expiry date. | |
DATEFORMAT | value | Optional: Date format | |
SERIAL | value | Mandatory. Serial number. | |
ALGORITHM | *DSA | Optional. Type of key pair. | |
*RSA | Default. | ||
STRENGTH | value | Optional. Strength of key. | |
2048 | Default. | ||
COUNTRY | value | Optional. | |
STATE | value | Optional. | |
LOCALITY | value | Optional. | |
ORGANIZATION | value | Optional. | |
UNIT | value | Optional. | |
COMMON_NAME | value | Optional. | |
value | Optional. | ||
SIGNING_ALGORITHM | *SHA1RSA | Optional. Certificate signing algorithm. | |
*SHA1DSA | |||
*SHA256RSA | Default. |
Create certificate request.
Command | Keyword | Value | Developer notes |
|---|---|---|---|
CREATE | CERTIFICATE | *REQUEST | Mandatory. Type of certificate. |
REQUEST_CERTIFICATE_PATH | value | Mandatory. PKCS10 certificate request file. | |
REQUEST_KEYSTORE_PATH | value | Mandatory. PKCS8 keystore. | |
REQUEST_KEYSTORE_PASSWORD | value | Mandatory. Keystore password. | |
ALGORITHM | *DSA | Optional. Type of key pair. | |
*RSA | Default. | ||
STRENGTH | value | Optional. Strength of key. | |
2048 | Default. | ||
COUNTRY | value | Optional. | |
STATE | value | Optional. | |
LOCALITY | value | Optional. | |
ORGANIZATION | value | Optional. | |
UNIT | value | Optional. | |
COMMON_NAME | value | Optional. | |
value | Optional. | ||
SIGNING_ALGORITHM | *SHA1RSA | Optional. Certificate signing algorithm. | |
*SHA1DSA | |||
*SHA256RSA | Default. |
Create certificate from certificate request.
Command | Keyword | Value | Developer notes |
|---|---|---|---|
CREATE | CERTIFICATE | *CLIENT | Mandatory. Type of certificate. |
CA_CERTIFICATE_PATH | value | Mandatory. X509 certificate authority file. | |
CA_KEYSTORE_PATH | value | Mandatory. PKCS8 keystore. | |
CA_KEYSTORE_PASSWORD | value | Mandatory. Keystore password. | |
REQUEST_CERTIFICATE_PATH | value | Mandatory. PKCS10 certificate request file. | |
CLIENT_CERTIFICATE_PATH | value | Mandatory. X509 certificate file. | |
SERIAL | value | Mandatory. Serial number. | |
DAYS | value | Mandatory. Valid for number of days. | |
SIGNING_ALGORITHM | *SHA1RSA | Optional. Certificate signing algorithm. | |
*SHA1DSA | |||
*SHA256RSA | Default. |