Menu
How can I make it so that a random serial number is generated for each new signed certificate issued from a self signed rsa certificate using the openssl command?
I couldn't find anything regarding openssl x509.
The best (cheap and only) way I found was to delete the serial file used for the rootCA ca.srl.
That way, when a new certificate is issued, by using the -CAcreateserial flag, a new random serial is created and thus leveraging the same random number generation used by openssl.
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With