<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN"> <HTML> <HEAD> <META NAME="GENERATOR" CONTENT="LinuxDoc-Tools 0.9.21"> <TITLE>XCA </TITLE> <LINK HREF="xca-1.html" REL=next> </HEAD> <BODY> <A HREF="xca-1.html">Next</A> Previous Contents <HR> <H1>XCA </H1> <H2>Christian Hohnstädt, <CODE>christian@hohnstaedt.de</CODE> </H2>December 2009 - Version 0.8.0 <HR> <EM> <!-- (your index root) --> This application is intended for creating and managing X.509 certificates, certificate requests, RSA, DSA and EC private keys and CRLs. Everything that is needed for a CA is implemented. All CAs can sign sub-CAs recursively. These certificate chains are shown clearly. For an easy company-wide use there are customiseable templates that can be used for certificate or request generation. All crypto data is stored in a and endian-agnostic file format portable across operating systems.</EM> <HR> <P> <H2><A NAME="toc1">1.</A> <A HREF="xca-1.html">Introduction</A></H2> <UL> <LI><A NAME="toc1.1">1.1</A> <A HREF="xca-1.html#ss1.1">File formats</A> <LI><A NAME="toc1.2">1.2</A> <A HREF="xca-1.html#ss1.2">Further reading </A> <LI><A NAME="toc1.3">1.3</A> <A HREF="xca-1.html#ss1.3">Copyright</A> <LI><A NAME="toc1.4">1.4</A> <A HREF="xca-1.html#ss1.4">Credits</A> </UL> <P> <H2><A NAME="toc2">2.</A> <A HREF="xca-2.html">Updating from older versions</A></H2> <P> <H2><A NAME="toc3">3.</A> <A HREF="xca-3.html">Download</A></H2> <P> <H2><A NAME="toc4">4.</A> <A HREF="xca-4.html">Command line options</A></H2> <P> <H2><A NAME="toc5">5.</A> <A HREF="xca-5.html">Common actions</A></H2> <UL> <LI><A NAME="toc5.1">5.1</A> <A HREF="xca-5.html#ss5.1">Importing items</A> <LI><A NAME="toc5.2">5.2</A> <A HREF="xca-5.html#ss5.2">Details of an item</A> <LI><A NAME="toc5.3">5.3</A> <A HREF="xca-5.html#ss5.3">Renaming an item</A> <LI><A NAME="toc5.4">5.4</A> <A HREF="xca-5.html#ss5.4">Deleting Items</A> </UL> <P> <H2><A NAME="toc6">6.</A> <A HREF="xca-6.html">The Certificate input dialog</A></H2> <UL> <LI><A NAME="toc6.1">6.1</A> <A HREF="xca-6.html#ss6.1">Source</A> <LI><A NAME="toc6.2">6.2</A> <A HREF="xca-6.html#ss6.2">Personal settings</A> <LI><A NAME="toc6.3">6.3</A> <A HREF="xca-6.html#ss6.3">X509v3 Extensions</A> </UL> <P> <H2><A NAME="toc7">7.</A> <A HREF="xca-7.html">Smart-cards</A></H2> <P> <H2><A NAME="toc8">8.</A> <A HREF="xca-8.html">RSA, DSA and EC keys </A></H2> <UL> <LI><A NAME="toc8.1">8.1</A> <A HREF="xca-8.html#ss8.1">Generating Keys</A> <LI><A NAME="toc8.2">8.2</A> <A HREF="xca-8.html#ss8.2">Key export</A> </UL> <P> <H2><A NAME="toc9">9.</A> <A HREF="xca-9.html">Certificate Signing Requests </A></H2> <UL> <LI><A NAME="toc9.1">9.1</A> <A HREF="xca-9.html#ss9.1">Generating a new Request</A> <LI><A NAME="toc9.2">9.2</A> <A HREF="xca-9.html#ss9.2">Request export</A> <LI><A NAME="toc9.3">9.3</A> <A HREF="xca-9.html#ss9.3">Request details</A> </UL> <P> <H2><A NAME="toc10">10.</A> <A HREF="xca-10.html">Certificates</A></H2> <UL> <LI><A NAME="toc10.1">10.1</A> <A HREF="xca-10.html#ss10.1">CA certificates </A> <LI><A NAME="toc10.2">10.2</A> <A HREF="xca-10.html#ss10.2">Generating certificates</A> <LI><A NAME="toc10.3">10.3</A> <A HREF="xca-10.html#ss10.3">Certificate details</A> <LI><A NAME="toc10.4">10.4</A> <A HREF="xca-10.html#ss10.4">Certificate trust</A> <LI><A NAME="toc10.5">10.5</A> <A HREF="xca-10.html#ss10.5">Certificate export</A> <LI><A NAME="toc10.6">10.6</A> <A HREF="xca-10.html#ss10.6">Certificate revocation</A> <LI><A NAME="toc10.7">10.7</A> <A HREF="xca-10.html#ss10.7">Certificate renewal</A> <LI><A NAME="toc10.8">10.8</A> <A HREF="xca-10.html#ss10.8">CA special functions</A> </UL> <P> <H2><A NAME="toc11">11.</A> <A HREF="xca-11.html">Templates</A></H2> <P> <H2><A NAME="toc12">12.</A> <A HREF="xca-12.html">Certificate Revocation Lists</A></H2> <UL> <LI><A NAME="toc12.1">12.1</A> <A HREF="xca-12.html#ss12.1">Generation of Certificate revocation lists</A> </UL> <P> <H2><A NAME="toc13">13.</A> <A HREF="xca-13.html">Options</A></H2> <UL> <LI><A NAME="toc13.1">13.1</A> <A HREF="xca-13.html#ss13.1">Mandatory subject entries</A> <LI><A NAME="toc13.2">13.2</A> <A HREF="xca-13.html#ss13.2">String settings</A> <LI><A NAME="toc13.3">13.3</A> <A HREF="xca-13.html#ss13.3">Default hash algorithm</A> <LI><A NAME="toc13.4">13.4</A> <A HREF="xca-13.html#ss13.4">PKCS#11 library path</A> </UL> <P> <H2><A NAME="toc14">14.</A> <A HREF="xca-14.html">Object IDs</A></H2> <P> <H2><A NAME="toc15">15.</A> <A HREF="xca-15.html">Step by Step guides</A></H2> <UL> <LI><A NAME="toc15.1">15.1</A> <A HREF="xca-15.html#ss15.1">Setting up a Root CA Certificate</A> <LI><A NAME="toc15.2">15.2</A> <A HREF="xca-15.html#ss15.2">Creating a CA-Signed Host Certificate</A> <LI><A NAME="toc15.3">15.3</A> <A HREF="xca-15.html#ss15.3">Creating a Self-Signed Host Certificate</A> <LI><A NAME="toc15.4">15.4</A> <A HREF="xca-15.html#ss15.4">Setting Up A Template</A> <LI><A NAME="toc15.5">15.5</A> <A HREF="xca-15.html#ss15.5">Revoking a Certificate issued by a CA</A> </UL> <P> <H2><A NAME="toc16">16.</A> <A HREF="xca-16.html">Appendix</A></H2> <UL> <LI><A NAME="toc16.1">16.1</A> <A HREF="xca-16.html#ss16.1">PEM</A> <LI><A NAME="toc16.2">16.2</A> <A HREF="xca-16.html#ss16.2">SPKAC</A> </UL> <HR> <A HREF="xca-1.html">Next</A> Previous Contents </BODY> </HTML>