3.1.3 Generating a Certificate Signing Request and a Public Certificate
Perform the following steps to generate the Certificate Signing Request (CSR) and public certificate:
- Generate the CSR using the server
key (
server.key
) and using the openssl req -new -key server.key -out server.csr command. - Self-sign the certificate using
the CA certificate and generate the public key using the openssl x509 -req -days
365 -in server.csr -CA winc_root.crt -CAkey winc_root.key -set_serial 01 -out
server.crt command.
The above-generated certificates (
server.crt
,server.key
andwinc_root.cer
) are used for server authentication. During server authentication,server.crt
andserver.key
are used by the RADIUS server. The root certificatewinc_root.cer
is flashed into the ATWINC using the root certificate downloader.