Self-signed certificates for nginx

Nick Pearson nick.pearson at gmail.com
Thu Feb 19 18:27:51 MSK 2009


Generate a private key:

openssl genrsa -des3 -out www.domain.com.ssl.key 1024

Create a CSR:

openssl req -new -key www.domain.com.ssl.key -out www.domain.com.ssl.csr
*note: enter full domain (www.domain.com) for CN (common name)*

Remove password from private key (optional):

openssl rsa -in www.domain.com.ssl.key -out www.domain.com.ssl.key.nopass

Generate self-signed cert:

openssl x509 -req -days 365 -in www.domain.com.ssl.csr -signkey
www.domain.com.ssl.key -out www.domain.com.ssl.crt
*note: use .nopass if you removed the password from the private key*

Hope that helps.  I'm not sure about generating a wildcard cert.

Nick


On Thu, Feb 19, 2009 at 9:11 AM, Robert Gabriel <lists at ruby-forum.com>wrote:

> Does anyone know how to generate self-signed certificate for nginx?
> maybe even with wildcard or for multiple subdomains?!
>
> I mean the openssl command, if possible.
>
> Thanks!
> --
> Posted via http://www.ruby-forum.com/.
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://nginx.org/pipermail/nginx/attachments/20090219/c01bbfd4/attachment.html>


More information about the nginx mailing list