![]() ![]() What you are about to enter is what is called a Distinguished Name or a DN. You are about to be asked to enter information that will be incorporated 2ndquadrant.in:/data/nijam # openssl req -nodes -new -x509 -days 3650 -keyout server.key -out server.crt x509 produces a self signed certificate rather than a certificate request. subj is a shortcut to avoid prompting for the info. Set appropriate permission and owner on the private key file. Gsahdg (it is like password you can give whatever you want). = 2ndquadrant.in:/data/nijam # openssl rsa -in server.key -out server.key Generating RSA private key, 1024 bit long modulus = 2ndquadrant.in:/data/nijam # openssl genrsa -des3 -passout pass:gsahdg -out server.key 1024 Generate a private key (you must provide a passphrase): CentOS default is /var/lib/pgsql/data/:Ĭonnect as root user and go to postgres data directory path then generate SSL certificate form there only. On the server, three certificates are required in the data directory. PgAdmin is already installed on the client (either Windows or Linux). The assumption is that postgresql (compiled with ssl support) and openssl are already installed and functional on the server (Linux). This describes how to set up ssl certificates to enable encrypted connections from PgAdmin on some client machine to postgresql on a server machine. ![]() Nijam 19159 19150 0 Jun11 ? 00:00:01 postgres: bgworker: logical replication launcher Nijam 19156 19150 0 Jun11 ? 00:01:19 postgres: autovacuum launcher process Collecting the postgres Server details: ps -ef|grep -i postgres|grep -v -edle # openssl version -dīuilt on: reproducible build, date unspecified ![]() We can print the OpenSSL directory with version -d option like below. Checking openSSL version : # openssl versionĤ. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |