OpenSSL is a toolkit that can be used to create cryptographic keys, generate Certificate-Signing-Requests (CSR) and manage secure communications.

The command line tool OpenSSL should be pre-installed on all Unix and Linux based operating systems.

On Windows, OpenSSL must be installed and configured separately to perform the necessary key operations.

OpenSSL is available for download at the following URLs:

• OpenSSL (sourcen und rpm)
• OpenSSL (binaries für Windows)

Please refer to the separate installation instructions on the OpenSSL page. In particular, it may be necessary to install a version of the VC++ redistributables that is compatible with OpenSSL. This is explained on the OpenSSL (binaries für Windows) website.

Furthermore, the environment variable "HOME" should be set or adapted, e.g:

HOME=c:\openssl\bin

(powershell $env:Home="<OPENSSL Installationsverzeichnis>\bin\")

The variable "RANDFILE" must also be set:

RANDFILE=%HOME%\.rnd

(powershell $env:RANDFILE="<OPENSSL Installationsverzeichnis>\bin\.rnd")

If an adapted version of the "openssl.cfg" are used, this can also be defined via an environment variable, e.g:

OPENSSL_CONF = %HOME%\openssl.cfg

(powershell $env:OPENSSL_CONF="<OPENSSL Installationsverzeichnis>\bin\openssl.cfg")

If access violations occur when running OpenSSL (e.g. "private.pem: Permission denied ..."), please note that the command line interpreter used, e.g. Command Prompt and Powershell, or users must have appropriate access rights to the specified files.

Further Steps:

• Generate a new Certificate Signing Request (CSR)
• Generation of a certificate request based on an existing RSA key and certificate