Reference10:General/Certificates/Create new: Difference between revisions
Jump to navigation
Jump to search
no SHA224 |
IE needs IP addresses to be stored as DNS name |
||
| Line 27: | Line 27: | ||
If you add any DNS names or IP addresses the browser will ignore the common name. Therefore you also have to add the domain from the common name as a DNS name. | If you add any DNS names or IP addresses the browser will ignore the common name. Therefore you also have to add the domain from the common name as a DNS name. | ||
For compatibility with Internet Explorer it is recommended to add IP addresses also as DNS names. | |||
Latest revision as of 09:59, 22 April 2014
This dialog is for creating self-signed certificates and certificate requests.
| Type | Self-signed certificate or signing request. |
| Key | Select the key strength of the certificate here. Stronger keys are more secure but encryption/decryption is way slower. You can also reuse the key of the current certificate. |
| Signature | The signature algorithm that should be used to sign the certificate. The standard algorithm is SHA1. You can also select SHA256, SHA384 and SHA512 that are more secure. |
| Validity | The number of years the certificate shall be valid from now. Applies only to self-signed certificates. |
| Common Name | The common name should match the host name of the box. |
| Other naming fields | These fields are optional. |
| DNS Name | If the box has got a DNS name you should enter it here. It will be stored as a SubjectAltName in the certificate. |
| IP address | If the box has got a fixed IP address you should enter it here. It will be stored as a SubjectAltName in the certificate. |
If you add any DNS names or IP addresses the browser will ignore the common name. Therefore you also have to add the domain from the common name as a DNS name.
For compatibility with Internet Explorer it is recommended to add IP addresses also as DNS names.