Here are the instructions for creating a self-signed Client Certificate for Mutual SSL authentication. These can be used to client authentication in HL7 Soup, Integration Host, and their deployments to AWS and AZURE.
- Install Open SSL. I got it
from here: https://slproweb.com/products/Win32OpenSSL.html.
It requires a $10 paypal donation.
- Run Win64 OpenSSL Command Prompt from your start menu.
- CD to the directory you will create your certificate
- Execute the following commands.
You will want to run them one at a time, and they will ask you for
details about your business. Fill
it all out:
openssl ecparam
-name prime256v1 -genkey -noout -out client1.key
openssl req -new
-sha256 -key client1.key -out client1.csr
openssl x509
-signkey client1.key -req -in client1.csr -out client1.crt -days 1000 -sha256
openssl pkcs12
-export -out client1.pfx -inkey client1.key -in client1.crt
- Double-Click the PFX to install it into your user certificates.
Very handy😊
Edit:
The Azure Certificate Vault also allows you to generate a certificate that has everything you need. It was very easy to do. You can then export it as a PFX.
No comments:
Post a Comment