Ping a Specific Port

Question

dross

Asked: 2020-09-13 01:02:01 +0800 CST2020-09-13 01:02:01 +0800 CST 2020-09-13 01:02:01 +0800 CST

RootCA and Trusted RootCA

772

I am planning buy a domain name lets called it foobar.net

Home devices will similarly be added to network called foobar.net

I plan to run a certificate authority to issue certificates to these devices.

Can I get a certificate issued by a Trusted Root Certificate so that all the certificate I issued from my CA have a chain of trust up to a Trusted Root CA

1 Answers

Voted

Crypt32 · Answer 1 · 2020-09-13T09:20:44+08:00

Crypt32

2020-09-13T09:20:44+08:002020-09-13T09:20:44+08:00

Can I get a certificate issued by a Trusted Root Certificate so that all the certificate I issued from my CA have a chain of trust up to a Trusted Root CA

no, you can't. The certificate you get from public CA won't allow you to sign other certificates. This is controlled by a Basic Constraints certificate extension. isCA bit will be set to 0 in your certificate, meaning, it is end entity certificate and it is not allowed to sign other certificates. More details, for example, in my blog post: https://www.pkisolutions.com/basic-constraints-certificate-extension/

1

RootCA and Trusted RootCA

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?