Support
- Advanced Backup
- Client Side
- Cloud Enterprise
- ColdFusion
- Control Panel
- cPanel
- Customer Portal
- DNS Information
- Dedicated Servers
- DirectAdmin
- Domain Name
- dotDefender
- Dreamweaver
- FileCatalyst
- Front Page
- FTP
- General Information
- Hosted Exchange & SharePoint
- IIS6
- IIS7
- Juniper Netscreen Firewalls
- Linux
- List Server
- MIVA Merchant
- MySQL
- Patching / Server Updates
- phpMyAdmin
- Plesk
- Policies and Procedures
- Premium Spam Filtering
- Programming
- Ruby on Rails
- Search Engine Submission
- SharePoint 3
- SharePoint 2010
- SiteDesigner
- SmarterMail 3
- SmarterMail 4
- SmarterMail 5
- SmarterMail 6
- SmarterMail 7
- SmarterStats
- SmarterTrack
- SQL Server
- Secure Socket Layer (SSL)
- Googlecheckout
- Siteseal
- Ssl
- Enable SSL/TLS for proFTPd in Plesk
- Export SSLs from IIS 6 and IIS 7
- Disable SSL 2.0 in IIS
- Disable SSL 2.0 in Apache
- Check validity of SSL Certificate
- Generate a CSR in IIS
- Generate a CSR on a Linux Server
- Create a PFX File using openssl in Linux
- Generate a Self-signed SSL in Linux
- Install SSL from PFX into IIS
- SSL FAQ
- View SSL Details via Command Line
- Install SSL on cPanel with One IP Address
- Trustwave Site Seal Errors
- Uploading Your Website
- Video Tutorials
- Windows Server 2003
- Windows Server 2008
- Web Design
- WordPress
- Advanced Monitoring
- MediaWiki
- Enkompass
- Microsoft Outlook 2010
- Android
- Outlook Web Access
- Critical Availability Service
- NAS Data Transfer
- Customer Portal Demos
- Joomla
- Moodle
- Cloud Dedicated
- Gallery CMS
- phpBB
- Standard Monitoring
- Righteous Restore
- NAS (Network Attached Storage)
- Networking
- SmarterMail 8
- PCI Security Scan
- LinkTiger
- Windows Cloud VPS
- Linux Cloud VPS
- Linux VPS
- Windows VPS
- Hyper V
- ENSIM
- Alert Logic
- Webmin
- e107
- Vbulletin
- VPN
- Visual Vault
- Mozilla Thunderbird
- PyroCMS
- Active Directory
- Vmware Related
- Drupal
Generate a Self-signed SSL in Linux
This article will go over generating a self-signed SSL in Linux. If you need a certificate authority issued SSL, please see our SSL page or you can contact us for more information.
-
Log into the server via SSH as the root user. If you are unfamiliar with SSL, please see How do I establish an SSH connection to my server?
-
Once logged in as the root user, run the following command which specifies the encryption level (in this case 2048 bits):
-
Once that command is run, run the following command to generate the certificate signing request (CSR) and certificate key:
-
The above command will prompt you for the SSL information as listed below:
-
The next information is optional but can be entered if you choose:
-
The common name portion of the form above is the important part. This will be your domain name, such as www.domain.com or domain.com. Note: these two domains are different when it comes to SSLs even if they both point to the same location. In generating a self-signed SSL, it doesn't matter as much as a CA issued SSL though.
-
Create a self-signed certificate from the certificate-signing request (.csr file):
-
Remove the domain.csr file as it is no longer needed.
-
Place the .crt and .key files into Apache's SSL directory and configure Apache to use those files for the self-signed SSL.
openssl genrsa -out domain.key 2048
openssl req -new -nodes -key domain.key -out domain.csrCountry Name (2 letter code) [GB]:
State or Province Name (full name) []:.
Locality Name (eg, city) [Newbury]:
Organization Name (eg, company) [My Company Ltd]:
Organizational Unit Name (eg, section) []:
Common Name (eg, your name or your server's hostname) []:
Email Address []:
A challenge password []:
An optional company name []:
openssl x509 -req -days 3650 -in domain.csr -signkey domain.key -out domain.crt