-
-
Notifications
You must be signed in to change notification settings - Fork 103
Creating TLS Certificates
Naim A edited this page Dec 28, 2020
·
1 revision
Some versions of IDA require that the certificate used has the "server authentication" extension. In order to generate such a certificate with openssl, you must modify openssl's configuration.
openssl.conf:
[ v3_req ]
extendedKeyUsage = serverAuthThe v3_req configuration section should already exist, simply add the extendedKeyUsage line to the section.
Once openssl is configured to add the serverAuth extension, you could generate the certificate:
# create a certificate
openssl req -x509 -newkey rsa:4096 -keyout lumen_key.pem -out lumen_crt.pem -days 365 -nodes -extensions v3_req
# convert to pkcs12 for lumen.
openssl pkcs12 -export -out lumen.p12 -inkey lumen_key.pem -in lumen_crt.pem
# export public-key for IDA; Copy hexrays.crt to IDA installation folder
openssl x509 -in lumen.pem -out hexrays.crt