NAME

pmx-cert - Create a self-signed certificate using OpenSSL.


SYNOPSIS

 pmx-cert --dns=bar.com --email="foo\@bar.com" --ip=10.0.0.1 --url=http://www.bar.com


DESCRIPTION

pmx-cert generates self-signed certificates for use in the PureMessage HTTPD servers (Apache & miniserv) when enabling HTTPS support (SSL).

By default, this creates x509 certificates that are valid for one year. The following options are available to tune the generated certificate for your server:

bits
Configure the key length, in bits, to use (1024, 2048, 4096). The default is 1024.

days
Configures the number of days for which the generated certificate will be valid. The default is 365 days.

dns
Configure the DNS name for the generated certificate. This should be set to the fully qualified domain name of the server that is handling the HTTPS requests. Setting this incorrectly causes clients to issue a warning when connecting to the server.

email
Configure the email address for the generated certificate. This is for display purposes.

ip
Configure the IP address for the generated certificate. This is for display purposes.

url
Configure the URL for the generated certificate. This is for display purposes.


COPYRIGHT

Copyright (C) 2000-2008 Sophos Group. All rights reserved. Sophos and PureMessage are trademarks of Sophos Plc and Sophos Group.