|
OpenSSL is the open source project that replaced SSLeay. If you are using
SSLeay on your system instead of OpenSSL, substitute ssleay with openssl
for the commands.
Create a RSA key for your Apache server:
- Change to whatever directory you will want to store the necessary files.
- Type: openssl genrsa -des3 -out server.key 1024
- Enter and verify a server.key 'pass phrase'. This pass phrase will be used to
create the CSR, and also later to install the server certificate.
Create a CSR with the created key:
- Type: openssl req -new -key server.key -out server.csr
- It will ask for additional information. Follow these conventions:
Note: the following characters cannot be used: < > ~ ! @ # $ % ^ * / \ ( ) ?
| Field |
Explanation |
Example |
| Country Name |
The two-letter ISO abbreviation for your country |
US |
| State or Province Name |
The state or province where your organization is legally located |
Utah |
| Locality Name |
The city where your organization is legally located |
Salt Lake City |
| Organization Name |
The exact legal name of your organization |
IdenTrust, Inc |
| Organizational Unit Name |
Department name within organization |
Marketing |
| Common Name |
The fully qualified domain name for your web server. Do not include "https://" |
www.identrust.com |
| Email Address |
Your email address |
abc@identrust.com |
- Do not enter extra attributes at the prompt.
Warning: Leave the challenge password blank
The text contents of the created server.csr file is the information we will require
you to provide during the online application for the server certificate.
|
