问题
I am wondering which private key Keychain Access in Mac OS X (Snow Leopard, now Lion) uses. Whenever I create a CSR using that app, it does not even ask for a private key to use. So which one does it use then?
I could imagine that it used the selected one, if you've selected one in your certificate list. But generating the request even works when nothing is selected at all or, making sure it's not an "invisible" selection, if the item that's selected is not a private key.
Does anyone know?
Thanks in advance
Arne
回答1:
It generates a new public/private keypair when you create a CSR in Keychain Access. The name of the key will be what you entered in the "Common Name" field when generating the CSR.
If you would like to generate a new CSR from an existing key, I do not believe this can be done entirely within Keychain Access. For how to do it with Keychain Access and OpenSSL, see How can I use an existing private key to a new iOS development certificate?
回答2:
If you open the resulting certificate on your Mac, it will be added to your Keychain. When you unfold it, you'll the associated private key.
来源:https://stackoverflow.com/questions/7947314/generating-certificate-signing-request-in-keychain-access-which-private-key-is