Thawte.com, actually, has a great step-by-step on
this one That's where the following comes from:
1- make sure you know the full domain name (https://www.domain.com)
2- pick 5 random files that are of moderate size (I
use about a 5K file). Thawte refers to these files as
file1:file2:file3...
3- generate the key as follows:
openssl genrsa -des3 -rand
file1:file2:file3:file4:file5 -out www.domain.com.key (you can leave out the
-des3, if you are confident and secure about your server)
4- generate the CSR from the key:
openssl -req -new -key www.domain.com.key -out www.domain.com.csr (common name, when you
are prompted, is not YOUR name, but the complete and entire domain
name)
5- generate a temporary, self-signed CRT
from the CSR:
openssl x509 -req -days 30 -in www.domain.com.csr -signkey www.domain.com.key -out www.domain.com.crt
You will then send the CSR to the CA of your
choice. Whenthey send you the CRT back, replace your temporary CRT with
the real one.
|
- newbie: help to create ssl connection. kulkarni veena
- Re: newbie: help to create ssl connection. Justin Williams
- Re: newbie: help to create ssl connection. kulkarni veena
- Re: newbie: help to create ssl connection. Justin Williams
- Re: newbie: help to create ssl connection... kulkarni veena