I would like to restrict the access of a homepage using client SSL certificates. The most tutorials on the internet describe it like this:
- create own key CA.key
- create server key server.key (self-signed)
- sign server.key using CA.key
- create (multiple) client keys client_xx.key
- sign client_xx.key using CA.key
I don't want to self-sign my server key, but use CaCert instead. So I omitted the first step. But when I want to create the client certificates, which key do I need to use? I don't have CaCerts CA.key.