|
797.
|
|
|
It will prompt you enter the passphrase. If you enter the correct passphrase, it will prompt you to enter Company Name, Once you enter all these details, your CSR will be created and it will be stored in the <filename>server.csr</filename> file. Site Name, Email Id, etc.
|
|
|
|
It will prompt you enter the passphrase. If you enter the correct passphrase, it will prompt you to enter Company Name, Once you enter all these details, your CSR will be created and it will be stored in the <filename>server.csr</filename> file. Site Name, Email Id, etc.
|
|
Translated and reviewed by
ZhongHan Cai
|
|
|
|
798.
|
|
|
You can now submit this CSR file to a CA for processing. The CA will use this CSR file and issue the certificate. On the other hand, you can create self-signed certificate using this CSR.
|
|
|
|
You can now submit this CSR file to a CA for processing. The CA will use this CSR file and issue the certificate. On the other hand, you can create self-signed certificate using this CSR.
|
|
Translated and reviewed by
ZhongHan Cai
|
|
|
|
Located in
serverguide/C/security.xml:1439(para)
|
|
799.
|
|
|
Creating a Self-Signed Certificate
|
|
|
|
Creating a Self-Signed Certificate
|
|
Translated and reviewed by
Malcolm Parsons
|
|
|
|
Located in
serverguide/C/security.xml:1447(title)
|
|
800.
|
|
|
To create the self-signed certificate, run the following command at a terminal prompt:
|
|
|
|
To create the self-signed certificate, run the following command at a terminal prompt:
|
|
Translated and reviewed by
Malcolm Parsons
|
|
|
|
Located in
serverguide/C/security.xml:1448(para)
|
|
801.
|
|
|
openssl x509 -req -days 365 -in server.csr -signkey server.key -out server.crt
|
|
|
|
openssl x509 -req -days 365 -in server.csr -signkey server.key -out server.crt
|
|
Translated and reviewed by
Malcolm Parsons
|
|
|
|
Located in
serverguide/C/security.xml:1453(command)
|
|
802.
|
|
|
The above command will prompt you to enter the passphrase. Once you enter the correct passphrase, your certificate will be created and it will be stored in the <filename>server.crt</filename> file.
|
|
|
|
The above command will prompt you to enter the passphrase. Once you enter the correct passphrase, your certificate will be created and it will be stored in the <filename>server.crt</filename> file.
|
|
Translated and reviewed by
Malcolm Parsons
|
|
|
|
Located in
serverguide/C/security.xml:1456(para)
|
|
803.
|
|
|
If your secure server is to be used in a production environment, you probably need a CA-signed certificate. It is not recommended to use self-signed certificate.
|
|
|
|
If your secure server is to be used in a production environment, you probably need a CA-signed certificate. It is not recommended to use self-signed certificate.
|
|
Translated and reviewed by
Malcolm Parsons
|
|
|
|
Located in
serverguide/C/security.xml:1461(para)
|
|
804.
|
|
|
Installing the Certificate
|
|
|
|
Installing the Certificate
|
|
Translated and reviewed by
Malcolm Parsons
|
|
|
|
Located in
serverguide/C/security.xml:1469(title)
|
|
805.
|
|
|
You can install the key file <filename>server.key</filename> and certificate file <filename>server.crt</filename>, or the certificate file issued by your CA, by running following commands at a terminal prompt:
|
|
|
|
You can install the key file <filename>server.key</filename> and certificate file <filename>server.crt</filename>, or the certificate file issued by your CA, by running following commands at a terminal prompt:
|
|
Translated and reviewed by
ZhongHan Cai
|
|
|
|
Located in
serverguide/C/security.xml:1471(para)
|
|
806.
|
|
|
sudo cp server.crt /etc/ssl/certs
|
|
|
|
sudo cp server.crt /etc/ssl/certs
|
|
Translated and reviewed by
Malcolm Parsons
|
|
|
|
Located in
serverguide/C/security.xml:1477(command)
|