OpenSSL Certificate Generation Information for Certificate Authority to Serve Traffic Over Https


apt-get install openssl
openssl genrsa -des3 -out server.key 1024
openssl req -new -key server.key -out server.csr

You'll be prompted to enter a password (don't forget it!) as well as fill in company identity information. The most important part is the common name, which is actually the domain you are requesting the certificate for. If you're going without a wildcard certificate you can specify the subdomain ( ) otherwise it assumes and to be the same, and will cover both domains and however, it will not cover Unless you get a wildcard certificate (these cost more money). Enter company details such as country code, state and the rest are pretty self explanatory.

You need to then submit the server.csr file contents to a certificate authority like godaddy, verisign, etc. Grab the contents by opening up the file

 vim server.csr 
After you submit it to them, they then will confirm that everything is correct and then give you the signed certificate back for your use on your server. Unless of course you're faking your company details and are an evil, wicked spammer!

The certificate authority (CA) should give you instructions for installing the cert, as well as other files so that you can serve secure pages w/out any browser troubles!

Tagged w/ #certificate #common name #https #openssllinux

Apps I've Built

Easily change the location on your photos and videos
Click here for more info about the app
Easily change the dates and times on your photos and videos
Click here for more info about the app
English dictionary with notifications so you won't forget what you're studying!
Click here for more info about the app
The app that quizzes and scores you on your vocabulary!
Click here for more info about the app