Creates a resulting server.crt
certificate and server.key
private key.
$ openssl genrsa -des3 -out server.key.tmp 1024
- Note: Enter a dummy pass pharse (e.g.
1234
) and remember it.
- Note: Enter a dummy pass pharse (e.g.
$ openssl rsa -in server.key.tmp -out server.key
- Enter dummy passphrase from previous step.
- Generate certificate request file (CSR).
$ openssl req -new -key server.key -out server.csr
- Enter target domain name when prompted for Common Name.
- Create the certificate from CSR.
$ openssl x509 -req -days 5000 -in server.csr -signkey server.key -out server.crt
- Cleanup unused files.
$ rm server.key.tmp server.csr
$ openssl req -new -newkey rsa:2048 -nodes -keyout server.key -out server.csr
- Enter target domain name when prompted for Common Name.
- Create the certificate from CSR.
$ openssl x509 -req -days 5000 -in server.csr -signkey server.key -out server.crt
- Cleanup unused files.
$ rm server.csr