Skip to content

Instantly share code, notes, and snippets.

What would you like to do?
Generate self-signed certificate for HAProxy
# Generate a unique private key (KEY)
sudo openssl genrsa -out mydomain.key 2048
# Generating a Certificate Signing Request (CSR)
sudo openssl req -new -key mydomain.key -out mydomain.csr
# Creating a Self-Signed Certificate (CRT)
openssl x509 -req -days 365 -in mydomain.csr -signkey mydomain.key -out mydomain.crt
# Append KEY and CRT to mydomain.pem
sudo bash -c 'cat mydomain.key mydomain.crt >> /etc/ssl/private/mydomain.pem'
# Specify PEM in haproxy config
sudo vim /etc/haproxy/haproxy.cfg
listen haproxy
bind ssl crt /etc/ssl/private/mydomain.pem
Copy link

phacic commented Feb 10, 2019

Thanks I needed this

Copy link

This helped me out. tutorials seem to give out too much information

Copy link

Thanks it was helpfull.

Copy link

thank I just use it to test. It fix my problem for create .pem wrong.

Copy link

Maybe is it missing a sudo on line 8?

Copy link

Thanks, I was looking for this...

Copy link

Much needed information

Copy link

D-saif commented Jan 31, 2022

thank you it was helpful.
PS: sudo is missing on line 8

Copy link

You have saved my life! Thank you so much, brother.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment