Posts

Showing posts from July, 2021

How to create a self signed SSL certificate and how to use it with your web Server.

Image
SSL certificate is the foremost important aspect of any website. If your website is running without the SSL, the modern browsers will stop the users from entering the website. Of course, there are ways to bypass that, at your own risk. As long as your website has no commercial data exchange, sensitive user information, etc, you are still good to run a website without a proper SSL certificate. For example, a blog can run without an SSL.  Note that Google AdSense accepts websites without SSL.  But the topic of this post is about Self Signed SSL certificate. How to create one, how to use it, and where to use it.  Let us see where to use it. For any website which is used for internal purposes, it's always a good idea to use Self Signed SSL, instead of paying for a real SSL certificate. Internal I mean, within a company, team, or for personal uses, for testing purposes, etc.  Now, let us see how to create a self-signed SSL certificate.  What you need A Linux machine.  OpenSSL utility  A

How to create self signed ssl certificate, easy steps

 These are the ready commands to create self-signed SSL certificate. These certificates can be used for testing purposes. For a production-grade application, you need to contact a CA authority to get the actual SSL certificate. But for your internal testing, you can always use a self-signed SSL certificate.  Here are the steps to create a Self Signed SSL certificate using OpenSSL # generate self sigend ssl certificate rm -rf *.pem echo "Generating CA certificates" # Step 1: generate CAs certificate openssl req -x509 -newkey rsa:4096 -days 365 -keyout ca-key.pem -out ca-cert.pem -subj "/C=IN/ST=kartnataka/L=bangalore/O=test/OU=test/CN=*.test.com/emailAddress=test@test" #inspect the CAs certificate #openssl x509 -in ca-cert.pem -noout -text # Step 2 generate server sign request certificate which will be used for self signing. Change the subject to as per web server echo "Generating Server certificate sign request" openssl req  -newkey rsa:4096 -keyout server