Thursday, March 27, 2025

The Ibanity staff activated our application, now I will configure Jane to use it.

Creating a new application client certificate is more complicated for “live” applications than for “sandbox” applications. The developer portal asks me

  • to generate an RSA key pair:

    openssl genrsa -aes256 -out private_key.pem 2048
    
  • and then to generate a Certificate Signing Request:

    openssl req -new -sha256 -key private_key.pem -out ibanity.csr \
    -subj "/C=BE/O=Isabel Group/OU=Isabel Group Certificate Authority/CN=Lino application account (abc123)/serialNumber=123456"
    

    This creates a file ibanity.csr

  • and then to upload the ibanity.csr file to their server.

In response, I receive a zip file with two files ca_chain.pem and certificate.pem.

I assume that I should run these commands in the project directory of my Lino site.