I'd like to set up my own Certificate Authority to sign things that are only used internally.
Does anyone have any steps they've used to set up their own CA and begin signing certs. I'd also like to produce a chain cert.
From there, I'll have used import these as trusted CA's into their OS's and/or browsers.
I want to use openssl for this and not AD.
If you want a basic CA, then I suggest setting up tinyca. On my system I basically setup Ubuntu on a USB flash disk, so I could have my CA be offline. Then I installed tinyca via apt.
Once you have your environment ready, just use the GUI to create certs as needed.