The server/client certificate pair can be used when an application trying to access a web service which is configured to authenticate the client application using the client ssl certificates. You can follow steps below to create server and client certificate using OpenSSL.

SSL Client Authentication Step By Step | make then make openssl req -new -key client.key -out client.req; Issue the client certificate using the cert request and the CA cert/key. openssl x509 -req -in client.req -CA ca.cer -CAkey ca.key -set_serial 101 -extensions client -days 365 -outform PEM -out client.cer; Convert the client certificate and private key to pkcs#12 format for use by browsers. Create a .pfx/.p12 Certificate File Using OpenSSL - The commands below demonstrate examples of how to create a .pfx/.p12 file in the command line using OpenSSL: PEM (.pem, .crt, .cer) to PFX openssl pkcs12 -export -out certificate.pfx -inkey privateKey.key -in certificate.crt -certfile more.crt Breaking down the command: openssl – the command for executing OpenSSL Creating self-signed SSL certificates with OpenSSL

Jul 22, 2017

Mar 13, 2017

Dec 18, 2018

Generating a self-signed certificate using OpenSSL Jul 16, 2020 Howto: Make Your Own Cert With OpenSSL on Windows Mar 30, 2015 Manually Generate a Certificate Signing Request (CSR OpenSSL is a very useful open-source command-line toolkit for working with X.509 certificates, certificate signing requests (CSRs), and cryptographic keys. If you are using a UNIX variant like Linux or macOS, OpenSSL is probably already installed on your computer. ssl - How to create a self-signed certificate with OpenSSL