Once you have installed the components of Distributed DDNS, you can create a CA private key and certificate from any host machine that has a Distributed DDNS component installed.
- Log in to the host machine that is running the Distributed DDNS component
- Generate a private key for the CA using the following
openssl genrsa 2048 > ca_key.pem
- Generate the X509 certificate for the CA using the private key using the following
openssl req -new -x509 -nodes -days 365000 -key ca_key.pen -out ca_cert.pem
Once you have generated the private key and the certificate, the following two files are created: ca_key.pem and ca_cert.pem. These two files are used to create custom X509 certificates.