Databases | Networking | Programming | OS | Testing | Security | SCM | People | MiniWiki | About

Hard way of creating self-signed certificates

mkdir x509; cd x509
openssl genrsa -des3 -out ca.key 1024
openssl req -new -x509 -days 365 -key ca.key -out ca.crt
openssl genrsa -des3 -out server.key 1024 
openssl req -new -key server.key -out server.csr 
./sign.sh server.csr

• ca.key = private key for the Root CA
• ca.crt = public certificate for Root CA
• server.key = private key for your HTTPS/IMAPS/etc SSL server
• server.csr = certificate request file (not an actual certificate)
• server.crt = public certificate for your SSL server

For the easy way, go here

Edit | Help | Archive | Home | Map | List Pages | List All Links | Search