SSL (Secure Sockets Layer), is designed to handle and protect transmission of confidential / sensitive information over the Internet.
For the purposes of this tutorial we will use OpenSSL library and its binaries and, of course, we will be working under Linux / Unix OS.
Before we start we must find if we have OpenSSL installed and see where the binaries are.
Here is what we have installed and where for this tutorial (the version of OpenSSL is a bit old even today. I recommend that you download the latest version from the official website that is listed above):
"exact phrase" include -exclude
will give you more specific results
will give you more specific results
Create a self-singned SSL [1/2]
|
[root@onlinehowto ~]# which openssl
/usr/bin/openssl
[root@onlinehowto ~]# /usr/bin/openssl version
OpenSSL 0.9.7e-p1 25 Oct 2004
First what needs to be Created is the so called CSR (Certificate Signing Request). The CSR is a message sent from an applicant to a certificate authority in order to apply for a digital identity certificate. Below is an example of how to Create your CSR. Beware to remember the pass phrase.
Note: OpenSSL asks for different things. A common error is to enter a wrong "common name". This should be the FQHN (Fully Qualified HostName) of your Server, i.e www.onlinehowto.net
Note: OpenSSL asks for different things. A common error is to enter a wrong "common name". This should be the FQHN (Fully Qualified HostName) of your Server, i.e www.onlinehowto.net
[root@onlinehowto ~]# /usr/bin/openssl req -new > new.cert.csr
Generating a 1024 bit RSA private key
........................++++++
.......++++++
writing new private key to 'privkey.pem'
Enter PEM pass phrase:
Verifying - Enter PEM pass phrase:
-----
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [AU]:US
State or Province Name (full name) [Some-State]:CA
Locality Name (eg, city) []:
Organization Name (eg, company) [Internet Widgits Pty Ltd]:ONLINEHOWTO
Organizational Unit Name (eg, section) []:
Common Name (eg, YOUR name) []:www.onlinehowto.net
Email Address []:stephen@onlinehowto.net
Please enter the following 'extra' attributes
to be sent with your certificate request
A challenge password []:
An optional company name []:
|
- Create a self-singned SSL [1/2] - | |
RECOMMENDED TUTORIALS
Need a specific tutorial? Do not hesitate and submit a request!