Tag Archives: OpenSSL

Verify Server Certificate with OpenSSL

Here’s a quick note for checking the contents of a TLS (SSL) server certificate with the OpenSSL command-line tools. Comments: echo “Q” causes the openssl s_client to disconnect (quit) immediately after verifying connectivity. Replace your hostname and port for “your.fqdn.com:443”. … Continue reading

Posted in System Administration | Tagged , | Leave a comment

Secure LDAP with Active Directory

Microsoft Active Directory Domain Controllers (DCs) support secure LDAP connections on TCP ports 636 (non-global queries) and 3269 (global-catalog queries). If you have an active Enterprise Root Certificate Authority in your domain, it will sign the domain controller LDAP certificate … Continue reading

Posted in System Administration | Tagged , , , , , | Leave a comment

OpenSSL Check CSR Contents

In an organization using paid SSL certificates, the person purchasing and creating each trusted server certificate may be different from the person creating the associated Certificate Signing Request (CSR) on the target server system. To avoid mistakes and double-check the … Continue reading

Posted in System Administration | Tagged , , | Leave a comment

PowerShell for OpenSSL CA Issued Cert Status

In the lab you might use a basic OpenSSL certificate authority (CA) to issue test client certificates. If you’re on Windows, you may find the following PowerShell sample helpful to list the issued client certs along with current status, subject, … Continue reading

Posted in System Administration | Tagged , | 1 Comment

Convert Apache Httpd SSL Certificate for Tomcat

This document may be helpful if you need to convert an existing Apache Httpd SSL certificate to the Java Key-Store (JKS) format used by default in Apache Tomcat. This example is specific to trusted certificates issued by GoDaddy, but the … Continue reading

Posted in Linux, System Administration | Tagged , , , , , , | 2 Comments