How do you specify the key size of a Certificate Signing Request?

ssl ssl-certificate openssl

I'm trying to generate a CSR with godaddy. I used the following commands to create the certificate:

openssl req -new -nodes -keyout server.key -out server.csr
openssl x509 -req -days 365 -in server.csr -signkey server.key -out server.crt

But when I use the key generated in my server.csr file, I get the following error from godaddy:

The CSR key length must be 2048 or 4096

How do I specify the key size of the CSR?

P.S. I'm intending to use this on a domain hosted on heroku.


This should work for you:

openssl req -new -newkey rsa:2048 -keyout your.key -out your.csr

-newkey rsa:size - type and size of the private key


The way i prefer to do this is to edit the openssl.cfg and change the "default_bits" to "2048". In this way all keys you create will automatically start at the right size

Related

pdsh gives error "rcmd: socket: Permission denied"
Is there a way to exclude specific hosts from a Nagios hostgroup?
Windows 7 Permissions for installing Adobe Reader and Flash Updates?
Crontab job dependency to prevent race [closed]
How to rotate a log file from crontab?
When downloading two files, why does the second one not suddenly speed up after the first one finishes? [closed]
a2enmod not working on debian (buster)
How do I automatically run nightly backups for Microsoft SQL Server 2005?
How to wire up a RJ45 socket with cat-5 cable?
Linux equivalent of Windows NLB
Debian and users
Cannot start IIS - how do I find what is running on port 80?