Reputation: 177
ssl certificate for server and clients
We have a XMPP server using SSL certificates (for both the server and the clients).
We use a self-signed CA to sign those certificates. Now we want to stop using that self-signed CA, but we have no idea how to replace those certificates to ones signed by an authority like Digicert or GlobalSign, since we don't know what to buy to do the same we usually do (we usually just create a public key, then a request and we sign it using the self-signed CA, and then voila, we have a certificate ready for the client to use)
Any ideas?
Thanks a lot.
Upvotes: 0
Views: 73
Answers (1)
Reputation: 39271
we usually just create a public key, then a request and we sign it using the self-signed CA, and then voila, we have a certificate ready for the client to use)
The process is the same as for a Certificate Authority, with the difference you probably have to pay for the certificate
generate a key pair,private and public. (Not only the public)
Generate a Certificate Signing Request including the public key, some data about the certificate as Common Name, and sign it with the private key.
Send the CSR to the Certificate Authority
The CA validates the CSR, builds the certificate and signs it with its private key
Finally the CA sends you the certificate
Upvotes: 0
Related Questions
- Sending Client certificates in web browser
- Client certificate authentication
- SSL certificate for client
- Client Certificates
- Setting up client side certificate for mutual authentication
- HTTPS client - certificate
- How to Implement SSL in XAMPP
- passing the Client certificate over HTTP
- Send client certificate to Server in Tcl
- Setup an SSL certificate on xampp mac