Reference10:General/Certificates/Create new: Difference between revisions
Jump to navigation
Jump to search
No edit summary |
no SHA224 |
||
| Line 8: | Line 8: | ||
|- valign=top | |- valign=top | ||
| '''Signature''' | | '''Signature''' | ||
| The signature algorithm that should be used to sign the certificate. The standard algorithm is SHA1. You can also select | | The signature algorithm that should be used to sign the certificate. The standard algorithm is SHA1. You can also select SHA256, SHA384 and SHA512 that are more secure. | ||
|- valign=top | |- valign=top | ||
| '''Validity''' | | '''Validity''' | ||
Revision as of 10:47, 28 February 2014
This dialog is for creating self-signed certificates and certificate requests.
| Type | Self-signed certificate or signing request. |
| Key | Select the key strength of the certificate here. Stronger keys are more secure but encryption/decryption is way slower. You can also reuse the key of the current certificate. |
| Signature | The signature algorithm that should be used to sign the certificate. The standard algorithm is SHA1. You can also select SHA256, SHA384 and SHA512 that are more secure. |
| Validity | The number of years the certificate shall be valid from now. Applies only to self-signed certificates. |
| Common Name | The common name should match the host name of the box. |
| Other naming fields | These fields are optional. |
| DNS Name | If the box has got a DNS name you should enter it here. It will be stored as a SubjectAltName in the certificate. |
| IP address | If the box has got a fixed IP address you should enter it here. It will be stored as a SubjectAltName in the certificate. |
If you add any DNS names or IP addresses the browser will ignore the common name. Therefore you also have to add the domain from the common name as a DNS name.