How to generate a trusted SSL certificate
7 views
Skip to first unread message
solsson
Mar 13, 2009, 6:55:24 PM3/13/09
to Repos Server
Hi again,
When you install Repos Server, an SSL certificate is generated
automatically with the hostname and locality you provide. The script
first generates a Certificate Authority (CA), then uses the CA and a
Certificate Signing Request (CSR) to create a certificate. When a
visitor enters your server using https she must first accept (trust)
the CA, then the certificate.
With the latest release we have updated the script so that it leaves
the CSR in apache/conf/, which means that you can use it at
certificate issuers to buy a certificate that is automatically
accepted by browsers.
I'd also like to recommend cacert.org which can create certificates
for free and is very easy to use. Browser vendors still don't accept
their root certificate by default, but you can forward your users to
http://www.cacert.org/index.php?id=3
I'm in no way affiliated with cacert.org but as I was learning about
OpenSSL and certificates the site was very helpful.
/Staffan
When you install Repos Server, an SSL certificate is generated
automatically with the hostname and locality you provide. The script
first generates a Certificate Authority (CA), then uses the CA and a
Certificate Signing Request (CSR) to create a certificate. When a
visitor enters your server using https she must first accept (trust)
the CA, then the certificate.
With the latest release we have updated the script so that it leaves
the CSR in apache/conf/, which means that you can use it at
certificate issuers to buy a certificate that is automatically
accepted by browsers.
I'd also like to recommend cacert.org which can create certificates
for free and is very easy to use. Browser vendors still don't accept
their root certificate by default, but you can forward your users to
http://www.cacert.org/index.php?id=3
I'm in no way affiliated with cacert.org but as I was learning about
OpenSSL and certificates the site was very helpful.
/Staffan
Reply all
Reply to author
Forward
0 new messages