Generate SSL CSR on Ubuntu 14.04 LTS
Hi! The Tutorial shows you Step-by-Step How to Generate a SSL Certificate Signing Request (CSR) on Ubuntu 14.04 Trusty Tahr LTS Linux Desktop/Server.
Whether you are getting a Certificate from a CA or Generating your own self-signed certificate, the First, Step is to generate a Key.
If the certificate will be used by service daemons, such as Apache, Postfix, Dovecot, etc, a Key Without a Passphrase is often Appropriate.
Not having a passphrase Allows the Services to Start Without Manual Intervention, usually the preferred way to start a daemon.
-
Login into Shell.
Or Open a Command Line Terminal Window
(Press “Enter” to Execute Commands)
Ctrl+Alt+T
In case first see: Terminal QuickStart Guide.
-
Generate an OpenSSL Secure Key for CSR.
openssl genrsa -des3 -out server.key 2048
Enter a Passphrase (Leave Empty if Used on a Web Server.).
-
Generate an OpenSSL Insecure Key for CSR.
openssl rsa -in server.key -out server.key.insecure
You use as Input the Secure to get as Output the Insecure one…
-
Shuffle the Key Names.
mv server.key server.key.secure
mv server.key.insecure server.key
-
Create the CSR.
openssl req -sha256 -new -key server.key -out server.csr
You will be Prompted to Enter the Secure Key Passphrase.
Then Enter the Needed Data: Company Name, Site Name, Email Id…
-
How to Generate your Own CA Signed Certificate.
