Problem with generating SSL certificate on a J-series and SRX device
| Knowledge Base ID: | KB10871 |
| Version: | 4.0 |
| Published: | 04 Nov 2009 |
| Updated: | 04 Nov 2009 |
| Categories: |
 JUNOS J-series JUNOS-ES SRX Series |
Problem with generating SSL certificate for HTTPS access
Problem:
Attempt to create an SSL certificate on the router's shell fails.
Solution:geg@router>start shell
% su
Password:
root@router%
root@router%
root@router% openssl req x509 nodes newkey rsa:1024 keyoutt1600-sc07.pem -out test-SSL-cert.pem
openssl: Command not found.
root@router%
OpenSSL is not included in JUNOS software bundle. The certificate has to be generated on a separate UNIX or Linux host and added to the router's configuration.
Note that JUNOS with Enhanced Services 9.1R1 began support for auto-generating self-signed certificate for HTTPS management use. Refer to KB11611 for details.
Purpose:Note that JUNOS with Enhanced Services 9.1R1 began support for auto-generating self-signed certificate for HTTPS management use. Refer to KB11611 for details.
Troubleshooting
