SSL client certificats generation process

Hello,

We are currently testing and deploying deadline for our team, but i want to generate differents client certificats to connect to the RCS for external users.
I’ve try the process explain here : SSL Certificats

But i got a problem running the ssl_gen.py script with this error :
Traceback (most recent call last):
File “G:\Gestion_NT8___Ambroise-Cottet_Network\Deadline\CertificatsGenerator\ssl_gen.py", line 1, in
from OpenSSL import crypto
File "C:\Users\Administrateur\AppData\Roaming\Python\Python311\site-packages\OpenSSL_init.py”, line 8, in
from OpenSSL import rand, crypto, SSL
File “C:\Users\Administrateur\AppData\Roaming\Python\Python311\site-packages\OpenSSL\rand.py”, line 180, in
_lib.ERR_load_RAND_strings()
^^^^^^^^^^^^^^^^^^^^^^^^^^
AttributeError: module ‘lib’ has no attribute ‘ERR_load_RAND_strings’

I don’t understand why i got this problem and any help on how to process to create other remote client certificat would be create… Maybe the solution is not the good one too, maybe a more recent workflow to generate these certificat … i don’t know

Thanks by advance for your help or idea

Ok, we are going ahead ! problem was between the openssl module and ptyhon version, updating to 3.12 made the job.

Now another question about the certificat : i don’t want to crete a new certificat to connect directly to the repo but a certificat to connect to RCS. i’ve extracte crt en private key from my RCS pfx, but to generate a new client certificat i need the private key of the ca.crt … that was create during the original rcs installation … how or where can i found this private key ?

Thanks by advance

Hello @Okenite_Animation

Is there a reason why you do not want to generate new certs to connect with the DB? it is pretty easy to run the install and generate certs.

You can add CA cert to the Windows cert store and can then export the private key from it:

How do you use the private key to connect, what are you trying to achieve?