Generate OpenSSL certificate requests for Apache

From Tech-Wiki
Revision as of 02:33, 8 August 2016 by Fabricio.Lima (Talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

Method 1

Generate the private key 

# openssl genrsa -aes256 -out server.key 2048

Adjust the key to avoid asking for password on Apache startup: 

# openssl rsa -in server.key -out server.key

Generate the Certificate Request based on this previous request using provided key: 

# openssl req -new -sha256 -key server.key -out server.csr

If you are working in a test environment, you can create Self-Signed certificates (non-valid) 

# openssl req -new -sha256 -x509 -days 1825 -key server.key -out server.crt


Method 2

Generate CSR - Certificate Request and private key at once: 

# openssl req -nodes -newkey rsa:2048 -keyout server.key -out server.csr

If you are working in a test environment, you can create Self-Signed certificates (non-valid): 

# openssl x509 -req -days 1825 -in server.csr -signkey server.key -out server.crt
Retrieved from ‘http://tech-wiki.net/index.php?title=Generate_OpenSSL_certificate_requests_for_Apache&oldid=757