Page tree

Versions Compared


  • This line was added.
  • This line was removed.
  • Formatting was changed.


Key and certificate signing request creation will be explained using openssl.

Create a private key

Code Block
openssl genrsa -out client.key 4096

Create a certificate signing request (CSR)

Code Block
openssl req -new -key client.key -out client.req

The following interactive dialog will be shown. The two values marked red are essential and required for your client certificate!

Provide your CSR to OX

NEVER share your private KEY with anybody and do NOT send it to OX.

OX will issue your certificate and provide it to you.

Important Note

Is is mandatory to use two different keys and certificates for CI API and for the snapshot service. NEVER use the same key for both services. The unique identifier for the two services is the organizational unit (OU) in your certificate request.