OpenSSL Generating a Certificate Signing Request: Difference between revisions

From UNIX Systems Administration
Jump to navigation Jump to search
No edit summary
No edit summary
Line 6: Line 6:
## <tt>'''# openssl req -new -key <key_name>.key -out <csr_name>.csr'''</tt>
## <tt>'''# openssl req -new -key <key_name>.key -out <csr_name>.csr'''</tt>
# Enter the information as required by the prompts.
# Enter the information as required by the prompts.
# Verify the checksum of the key, this will be used to verify the CSR and the self signed-certificate.
# Verify the checksum of the key matches the checksum CSR.
## <tt>'''# openssl req -noout -modulus -in <csr_name>.csr | openssl md5'''</tt>
## <tt>'''# openssl req -noout -modulus -in <csr_name>.csr | openssl md5'''</tt>


Revision as of 18:31, 21 February 2013

Generate the Certificate Signing Request (CSR)

Apache with mod_ssl Enabled

  1. If required follow the OpenSSL Generating a Private Key procedure.
  2. For Apache purposes, use the key with no pass phrase to generate the CSR file.
  3. Generate the CSR from the private key using openssl.
    1. # openssl req -new -key <key_name>.key -out <csr_name>.csr
  4. Enter the information as required by the prompts.
  5. Verify the checksum of the key matches the checksum CSR.
    1. # openssl req -noout -modulus -in <csr_name>.csr | openssl md5

Further Reading

  1. How to Generate SSL key, CSR, and Self Signed Certificate for Apache
Retrieved from "http://www.outlandsmud.com/wiki/index.php?title=OpenSSL_Generating_a_Certificate_Signing_Request&oldid=395"