You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
// Choose any number of days. I chose 10000 to make it far in the future.
$ openssl req -x509 -new -nodes -key rootCA.key -sha256 -days 10000 -out rootCA.pem
Enter pass phrase for localhost.key:
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) []:US
State or Province Name (full name) []:CA
Locality Name (eg, city) []:Los Angeles
Organization Name (eg, company) []:localhost
Organizational Unit Name (eg, section) []:localhost
Common Name (eg, fully qualified host name) []:localhost
Email Address []:[email protected]
Add To Keychain
Open up KeyChain Access
Select "system"
Select "Certificates"
Drag the rootCA.pem into the window. It will prompt you for your password.
Double click on "localhost"
Select "Always Trust" from dropdown. Close the window (It will prompt you for your password again.
Create csr info
Create a file in ~/.ssh called localhost.csr.cnf and paste the following contents into the file: