Friday, May 17, 2013

Creating SSL/HTTPS Certificate Request with Open SSL

Sometimes, we are required to launch a simple HTTPS website for security reason or simply for testing purposes.

Here is some simple steps to get SSL certificate for your website:

Step 1: Download and Install OpenSSL from http://www.openssl.org/

Step 2: Open command prompt (if you are using Windows)

Step 3: Run: openssl genrsa -des3 -out server.key 2048
Run this command if see openssl.cnf not found error:
set OPENSSL_CONF=C:\OpenSSL-Win32\bin\openssl.cfg

Step 4: Run: openssl req -new -key server.key -out server.csr
Now you will have server.key and server.csr in your openSSL/bin folder, server.key is your private key while server.csr is used to request the certificate from Certificate Authority

C:\OpenSSL-Win32\bin>set OPENSSL_CONF=C:\OpenSSL-Win32\bin\openssl.cfg

C:\OpenSSL-Win32\bin>openssl genrsa -des3 -out server.key 2048
Loading 'screen' into random state - done
Generating RSA private key, 2048 bit long modulus
.......................+++
...........................+++
e is 65537 (0x10001)
Enter pass phrase for server.key:
Verifying - Enter pass phrase for server.key:

C:\OpenSSL-Win32\bin>openssl req -new -key server.key -out server.csr
Enter pass phrase for server.key:
Loading 'screen' into random state - done
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [AU]:SG
State or Province Name (full name) [Some-State]:Singapore
Locality Name (eg, city) []:Singapore
Organization Name (eg, company) [Internet Widgits Pty Ltd]:Home Pte Ltd
Organizational Unit Name (eg, section) []:IT
Common Name (e.g. server FQDN or YOUR name) []:terranspot.com
Email Address []:administrator@terranspot.com

Please enter the following 'extra' attributes
to be sent with your certificate request
A challenge password []:
An optional company name []:


Step 5: Buy the SSL certificate (e.g. www.namecheap.com)

Step 6: Submit your server.csr file and your will receive server.cer which is your SSL certificate
You will need server.key, server.csr and server.cer if you are using Apache web server.

7 comments:

  1. Great job for publishing such a beneficial web site. Your web log isn’t only useful but it is additionally really creative too. get more info about certificate holder

    ReplyDelete
  2. Positive site, where did u come up with the information on this posting? I'm pleased I discovered it though, ill be checking back soon to find out what additional posts you include.
    Buy Facebook Page Likes India

    ReplyDelete
  3. I have read your article, it is very informative and helpful for me.I admire the valuable information you offer in your articles. Thanks for posting it..
    slotxo thai

    ReplyDelete
  4. Awesome admin keep it up check my words Zoe is my name. I'm a social media marketing director with three years of expertise in the fields of social media marketing and SEO. I build websites and POS software, and I previously worked as a digital sales manager in a POS company, where I converted leads into sales. I also have experience with brand marketing.https://neoncavesigns.medium.com/

    ReplyDelete
  5. Companies are discovering that the latest neon flex can be used to create more than just open signs. The trendy neon word lights are used in co-working spaces. Neon wall art is a common sight in bars, coffee shops restaurant, restaurants, and dining establishments neon signs with lights are found in beauty salons and barber shops. Neon quotes can be found in yoga studios and nightclubs. https://www.ecogujju.com/custom-led-neon-signs/

    ReplyDelete
  6. If you're adamant about something that's not within your budget, you can try to purchase it at a discount. ShopStyle allows you to utilize ShopStyle to create a sale alert for goods that are available from hundreds of top brands. Simply type in the search filter or search terms and click the red "Add Sale Alert" button and you'll receive an email when the item is offered for sale. Retailers such as Overstock, Amazon, and Macy's will also notify to you when a product is sold or returns when they are out of inventory. https://neonsignsuk.weebly.com

    ReplyDelete
  7. There are a few downsides too. For example, having gated content may cause a rift with some site users, and limit the amount of people you could communicate with. It's ultimately up to you to figure out the degree of responsiveness you believe your viewers will be to content that is gated.
    High-quality content can increase traffic to your site increase your brand's reputation and improve the rate of conversion for internet users. It takes patience and time to write.
    https://medium.com/@shopsfurniture45/get-ready-for-winter-with-sohoconcept-ba899b696d8e

    ReplyDelete