How do I create a self-signed SSL Certificate for testing purposes?
Posted 04/27/2009 - 08:38 by David Schnardthorst
Solution:
- Make sure OpenSSL is installed and in your
PATH. - Run the following command, to create
server.keyandserver.crtfiles:
$ openssl req -new -x509 -nodes -out server.crt -keyout server.key
These can be used as follows in yourhttpd.conffile:SSLCertificateFile /path/to/this/server.crt SSLCertificateKeyFile /path/to/this/server.key - It is important that you are aware that this
server.keydoes not have any passphrase. To add a passphrase to the key, you should run the following command, and enter & verify the passphrase as requested.$ openssl rsa -des3 -in server.key -out server.key.new
$ mv server.key.new server.key
Please backup the server.key file, and the passphrase you entered, in a secure location.
