Creates a resulting server.crt
certificate and server.key
private key.
$ openssl genrsa -des3 -out server.key.tmp 1024
- Note: Enter a dummy pass pharse (e.g.
1234
) and remember it
- Note: Enter a dummy pass pharse (e.g.
$ openssl rsa -in server.key.tmp -out server.key
- Enter dummy pass pharse from previous step
- Generate certificate request file (CSR)
$ openssl req -new -key server.key -out server.csr
- Enter target domain name when prompted for Common Name
- Create the certificate from CSR
$ openssl x509 -req -days 5000 -in server.csr -signkey server.key -out server.crt
- Cleanup unused files
$ rm server.key.tmp server.csr
$ openssl req -new -newkey rsa:2048 -nodes -keyout server.key -out server.csr
- Enter target domain name when prompted for Common Name
- Create the certificate from CSR
$ openssl x509 -req -days 5000 -in server.csr -signkey server.key -out server.crt
- Cleanup unused files
$ rm server.csr