Skip to main content

Generate CSR Example

This command generates a Certificate Signing Request (CSR) and returns it in output. Then you need to manually send the CSR file to the PKI provider and use import-certificate command.

Command:

./notation-securosys generate-csr

Input(example):

{ 

 "keyId": "SecurosysImageSignKey02", 

  "pluginConfig": {}, 

  "certificate": { 

    "validity": 365, 

    "attributes": { 

      "commonName": "DockerImageSign05", 

      "country": "CH", 

      "stateOrProvinceName": "Zurich", 

      "locality": "Zurich", 

      "organizationName": "Securosys SA", 

      "organizationUnitName": "IT" 

    } 
  } 
}