Step 1 : Generating a Private Key
Open the OpenSSL tool using Terminal/Command Prompt
We create a Private Key that has a 1024 RSA key with Triple-DES encryption. This key is stored as PEM (Privacy Enhanced Email) format which contains ASCII text hence you can read it with a text editor too.
OpenSSL> genrsa -des3 -out mySSL.key 1024
Generating RSA private key, 1024 bit long modulus .............++++++
........++++++
e is 65537 (0x10001)
Enter passphrase for mySSL.key:
Verifying - Enter pass phrase for mySSL.key:
OpenSSL>Step 2 : Generating CSR Request (Certificate Signing Request)
In Step 1 we created a Private Key, now we need to generate a Certificate Signing Request.
Its a request that is sent to the Certificate Authority (CA) like Verisign who verify the identity of the organization who is requesting the certificate and issues a signed Certificate.
But as we are going to do a Self Signing we do not require a CA, let's see how it is done,
When we run the command for CSR we will be prompted with questions that need to be addressed, these are called as X.509 attributes of a Certificate. You will be prompted to fill the following,
Country Name in ISO format
Full State or Province Name
Locality Name i.e your City
Organization Name
Organizational Unit Name
Common Name
Email AddressOpenSSL> req -new -key server.key -out server.cs
Enter passphrase for server.key:
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [AU]:US
State or Province Name (full name) [Some-State]:New York
Locality Name (eg, city) []:New York
Organization Name (eg, company) [Internet Widgits Pty Ltd]:Code2care Tech
Organizational Unit Name (eg, section) []:IT
Common Name (e.g. server FQDN or YOUR name) []:Code2care
Email Address []:xyz@somedomainname.com
Please enter the following 'extra' attributes
to be sent with your certificate request
A challenge password []: your password
An optional company name []:c2cStep 3 : Generating Self Signed Certificate
Now we will request a Self-signed certificate, for this we need to provide the number of days that this certificate is valid. Once you run this command the certificate file will be generated (for me the location of the file is under XAMPP/etc/ssl.crt/server.crt)
OpenSSL>x509 -req -days 365 -in server.csr -signkey server.key -out server.crt
Signature ok
subject=/C=US/ST=New York/L=New York/O=Code2care Tech/OU=I T/CN=Code2care/ emailAddress= xyz@somedomainname.com
Getting Private key
Enter pass phrase for server.key:
OpenSSL>- Add X days from today in Command Line
- Turn off Focus Mode on Mac
- Unzip a Zip file from Terminal Command
- Gmail Unable to upload because it is a folder or a package (like an application bundle or RTFD document)
- MongoDB: Failed to connect to 127.0.0.1:27017 reason: Connection refused
- Clearing the Cache in Firefox Web Browser
- How to get more information about npm using brew command
- [IRCTC] Indian railways official eRail API 1.1 for developers to get train info
- How to rerun last command in Zsh shell
- Command to get count of only directories [macOS/Linux/Unix]
- How to get an embed code from Vimeo?
- CentOS Cannot find a valid baseurl for repo base7x86_64 yum
- How to enable line numbers in IntelliJ
- How to Kill service running on port using terminal command
- How to change font, apply bold or italic styles, font size in Windows Notepad
- SQL: Check if table exists
- [Fix] Steam Friends Network Unreachable Error
- What is an Authorization Code Grant? OAuth 2.0
- How to write hello world different languages syntax
- How to check the version of NodeJS installed
- Understanding grep command and its usage [Unix/Linux/macOS/Windows-Bash]
- [fix] Editor could not be opened unexpected error: File is a directory (VS Code)
- Display (Show) bookmarks bar Safari
- Background task activation is spurious error - Windows 10, Office 2016, Office 365
- How to press shortcut CTRL + ALT + DEL on Windows Remote Desktop
- 'pwd' is not recognized as an internal or external command, operable program or batch file. [Windows] - Bash
- Update Created By (Author) column of SharePoint document using PowerShell - SharePoint
- How to Undo-Revert Sent Email in Google Gmail - Google
- How to Configure Eclipse keymap in IntelliJ IDE - Android-Studio
- [fix] command not found curl - cURL
- How to ls command to output one entry per line [macOS/Linux/Bash] - Linux
- CSS Media Query Tutorial for Responsive Mobile First Web Design - CSS
- Mac OS X Error: Could not create the Java Virtual Machine - Mac-OS-X