Admin Manual Creating a Self Signed SSL Certificate

Installing a self-signed SSL certificate on your Pika web server will suppress some of the "invalid certificate" warnings that users face when they visit a site using the certificate generated during the Red Hat Linux install.

To create a self-signed certificate, log in as root and execute the following commands. The process requires Apache to be shut down and restarted, so it should be performed during scheduled maintenance time.

# service httpd stop
Stopping httpd: [ OK ]
# cd /etc/httpd/conf/ssl.crt/
# mv server.crt server.crt.orig
# openssl req -new -days 9999 -key ../ssl.key/server.key -x509 -out
server.crt
You are about to be asked to enter information that will be
incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name
or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [GB]:US
State or Province Name (full name) [Berkshire]:Ohio
Locality Name (eg, city) [Newbury]:Shaker Heights
Organization Name (eg, company) [My Company Ltd]:Your Org.
Name
Organizational Unit Name (eg, section) []:na
Common Name (eg, your name or your server's hostname) []:
pika.orgname.org
Email Address []:webmaster@orgname.org
# service httpd start
Starting httpd: [ OK ]

Document Generation Tags

Table of Contents

Admin Manual Creating a Self Signed SSL Certificate

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Clone this wiki locally