1. Generating a Certificate Signing Request (CSR)
sudo openssl genrsa -des3 -out server.key 1024
2. Store insecure key
sudo openssl rsa -in server.key -out server.key.insecure
3. sudo openssl req -new -key server.key -out server.csr
4. Create self-signed certificate
sudo openssl x509 -req -days 365 -in server.csr -signkey server.key -out server.crt
5. Install certificate
sudo cp server.crt /etc/ssl/certs
sudo cp server.key /etc/ssl/private
6. Edit /etc/apache2/sites-available/default
Under VirtualHost section. They should be placed under the DocumentRoot line:
SSLEngine on
SSLOptions +FakeBasicAuth +ExportCertData +CompatEnvVars +StrictRequire
SSLCertificateFile /etc/ssl/certs/server.crt
SSLCertificateKeyFile /etc/ssl/private/server.key
7. In port.conf in /etc/apache2 add line Listen 443
8. Restart your server.. point https://localhost...... and the story will begin
No comments:
Post a Comment