Page Title

Body
First you need to generate an RSA key file: <pre><code>openssl genrsa -out domainname.key 1024</pre></code> This will create a key file without requiring a passphrase everytime you start your web server. Using the key file, you can now create your CSR (Certificate Signing Request) file: <pre><code>openssl req -new -key yourdomain.com.key -out yourdomain.com.csr</pre></code> You will be prompted for the following: h3. Country Name (2 letter code) [AU]: US (must be two letter country code, note for United Kingdom the country code must be GB and NOT UK) h3. State or Province Name (full name) [Some-State]: The state or province where your organization is legally located. This cannot be abbreviated and must be entered in full. h3. Locality Name (eg, city) []: The city where your organization is legally located. h3. Organization Name (eg, company) [Internet Widgits Pty Ltd]: The exact legal name of your organization. Do not abbreviate your organization name. h3. Organizational Unit Name (eg, section) []: Section of the organization, such as Marketing or Web Development. h3. Common Name (eg, YOUR name) []: The fully qualified domain name for your web server. This must be an exact match. If you intend to secure the URL https://www.yourdomain.com, then your CSR's common name must be www.yourdomain.com. If you applying for a wildcard certificate to secure all sub domains on your domain, the common name must be *.yourdomain.com. h3. Email Address []: Leave this field blank by just pressing return. h3. A challenge password []: Leave this field blank by just pressing return. h3. An optional company name []: Leave this field blank by just pressing return. After the csr is generated you can send the contents to your SSL provider by dumping the contents and then copy and paste: <pre><code>cat yourdomain.com.csr</pre></code> You can then move the key and csr to /etc/httpd/conf/ssl.key and /etc/httpd/conf/ssl/csr. Once you get the key you will place it in /etc/httpd/conf/ssl.key. Your provider will also send you instructions for using an Intermediary Certificate. Once you get your certificate you can then follow the instructions for setting up SSL on your webserver: http://wiki.railsmachine.com/SettingUpSSL

Make page private