Skip to content

Instantly share code, notes, and snippets.

@AnasAboreeda

AnasAboreeda/Generate self signed no pass open ssl certificates.md

Last active November 13, 2016 16:18
Show Gist options
  • Save AnasAboreeda/4433c8cc305774bbb849a592510f7c29 to your computer and use it in GitHub Desktop.
Save AnasAboreeda/4433c8cc305774bbb849a592510f7c29 to your computer and use it in GitHub Desktop.
Download ZIP
Generate self signed no pass open ssl certificates
Raw
Generate self signed no pass open ssl certificates.md

Here is a simplified version that removes the passphrase, ups the security to suppress warnings and includes a suggestion in comments to pass in -subj to remove the full question list:

   $ openssl genrsa -des3 -out server.key 2048
   $ openssl rsa -in server.key -out server.key
   $ openssl req -sha256 -new -key server.key -out server.csr -subj '/CN=localhost'
   $ openssl x509 -req -sha256 -days 365 -in server.csr -signkey server.key -out server.crt

Replace 'localhost' with whatever domain you require. You will need to run the first two commands one by one as openssl will prompt for a passphrase.

To combine the two into a .pem file:

    $ cat server.crt server.key > cert.pem
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment