Web services: Difference between revisions

From Han Wiki
Jump to navigation Jump to search
← Older editNewer edit →
Line 4: Line 4:
=== Generate a CSR ===
=== Generate a CSR ===


This will generate a 2048-bit key (secure & insecure) for usage on a website.
This will generate a 2048-bit key (secure & insecure) and CSR for usage on a website. CSR is short for Certificate Signing Request and is usually requested by CA (Certificate Authority) when trying to obtain a SSL/TLS certificate.


1. Create a secure key for CSR
1. Create a secure key for CSR
Line 34: Line 34:
$ openssl req -new -key server.key -out server.csr
$ openssl req -new -key server.key -out server.csr
</syntaxhighlight>
</syntaxhighlight>
* ''Last tested on Ubuntu 14.04.2 LTS (trusty) | easy | less than five minutes''

Revision as of 14:47, 26 February 2015

SSL/TLS

Generate a CSR

This will generate a 2048-bit key (secure & insecure) and CSR for usage on a website. CSR is short for Certificate Signing Request and is usually requested by CA (Certificate Authority) when trying to obtain a SSL/TLS certificate.

1. Create a secure key for CSR 

$ openssl genrsa -des3 -out server.key 2048
Generating RSA private key, 2048 bit long modulus
.....................+++
....................+++
e is 65537 (0x10001)
Enter pass phrase for server.key:
Verifying - Enter pass phrase for server.key:

2. Create an insecure key for CSR sourcing from the secure one 

$ openssl rsa -in server.key -out server.key.insecure
Enter pass phrase for server.key:
writing RSA key

3. Rename the keys 

$ mv server.key server.key.secure
$ mv server.key.insecure server.key

4. Create the CSR 

$ openssl req -new -key server.key -out server.csr
  • Last tested on Ubuntu 14.04.2 LTS (trusty) | easy | less than five minutes
Retrieved from "https://wiki.michaelhan.net/index.php?title=Web_services&oldid=29"