TESTING THE SSL CERTIFICATE - Using the Terminal, enter the following command to change to the sitesenabled directory: - cd /etc/apache2/sites-enabled/ - Enter the following command to enable the localhost-ssl site: - In-s/etc/apache2/sites-available/nf - Enter the following command to enable the SSL Apache Mod: - azenmod ssl - Restart the Apache service. SSLCertificateFile /etc/ss//certs/ca.crt - SSLCertificateKeyfile /etc/sss/private/ca.key - Once modified, save the configuration file. Change the SSLCertificateFile and SSLCertificateKeyFile paths. cp nf nf - Edit the nf file using any text editor. cd letc/apachez/sites-available - Copy the nf file. Using the Terminal, navigate to the /etc/apachez/sites-available/ directory. cp ca.key/etc/ssl/private/ca.key - Copy the ca.csr file from the current directory to the /etc/ssl/private/ directory. cp ca.crt/etc/ssl/certs/ca.crt - Copy the ca.key file from the current directory to the /etc/ssl/private, directory. openssl x509 -req -days 365 -in ca.csr -signkey ca.key -out ca.crt - Copy the ca.crt file from the current directory to the/etc/ss//certs/ directory. Generate a self-signed key by entering the command below. Organization Name, type UNG Press Enter - e. openssl req -new -key ca.key -out ca.csr - a. Type the command below, followed by pressing the Enter key. openssl genrsa -out ca.key 2048 - Generate a new Certificate Signing Request (CSR).
LAB GOALS - Create a Self-Signed Certificate - Configure the Apache SSL file - Test the SSL certificateĬREATING A SELF-SIGNED CERTIFICATE - In the Terminal window, type the command below to generate an SSL key and press Enter.
0 kommentar(er)
