OpenSSL Initial Setup
1. Create a folder structure
mkdir -p certs/{ca,mid-ca,server}/{private,certs,newcerts,crl,csr}
2. Change the permissions
chmod -v 700 certs/{ca,mid-ca,server}/private
3. Create index files
touch certs/{ca,mid-ca}/index
4. Set a serial number
openssl rand -hex 16 > certs/ca/serial
openssl rand -hex 16 > certs/mid-ca/serial
5. Copy and place the configuration files
See also:
OpenSSL (3) - Server Certificate