how to create a three certificate chain
How to generate a 3 certificate chain?
How to generate your own Certificate Authority for testing purposes?
These are the questions that I’m trying to answer in this tutorial.
The enviroment I used consists of the following:
- Ubuntu 9.04.
The purpose of this tutorial is to obtain a 3 certificate valid chain, consisting of a root Certificate Authority, an intermediary Certificate Authority and a self generated certificate signed by the intermediary Certificate Authority. The user certificate will be stored in a jks keystore so it can be loaded when need it.
In order to accomplish this we will follow a few steps:
- setup the environment
- create the root certificate authority
- create a 2 certificate chain
- create the intermediary certificate authority
- generate the last certificate
- create the 3 certificate chain
- verify the created chain
Note that this certificate authority can be used for testing purposes only. This is available also for the intermediary certificate authority and the user certificate. If you need real certificates and real certificate authorities, use a recognized certificate authority.
Other useful resources: