Linode Forum
Linode Community Forums
 FAQFAQ    SearchSearch    MembersMembers      Register Register 
 LoginLogin [ Anonymous ] 
Post new topic  Reply to topic
Author Message
PostPosted: Thu May 21, 2015 10:23 am 
Offline
Senior Newbie

Joined: Tue Jun 18, 2013 11:40 am
Posts: 8
Hello,

when i put this
openssl req -new -newkey rsa:2048 -nodes -days 365 -keyout www.mydomain.com.key -out www.mydomain.com.csr

i got the www.mydomain.com.csr file empty

i can't submit it to godaddy to got the .cer file.

Help please


Top
   
PostPosted: Thu May 21, 2015 12:47 pm 
Offline
Senior Member
User avatar

Joined: Tue Apr 13, 2004 6:54 pm
Posts: 833
I use this syntax to generate the CSR:
Code:
openssl req -newkey rsa:2048 > new.cert.csr      
openssl rsa -in privkey.pem -out new.cert.key

COMMON NAME should be the name of the web site. Enter any password for the first command, and then re-use it on the second command. The second line removes the passphrase from the privkey so it can be used on webservers

You will get back the cert file your SSL cert vendor. Let's call this "new.cert.cert" for this example.

Now with Apache you can use it:
Code:
      SSLCertificateFile _path_to_/new.cert.cert
      SSLCertificateKeyFile _path_to_/new.cert.key


If you need intermediate keys and CA stores (eg with startssl.com)
Code:
      SSLCertificateChainFile _path_to_/sub.class1.server.ca.pem
      SSLCACertificateFile _path_to_/ca.pem


Similar commands are available for other webservers (eg nginx); check the documentation.

_________________
Rgds
Stephen
(Linux user since kernel version 0.11)


Top
   
PostPosted: Thu May 21, 2015 1:47 pm 
Offline
Senior Newbie

Joined: Tue Jun 18, 2013 11:40 am
Posts: 8
Thanks for the answer but i always have a blank file csr. i don't know why.


Top
   
PostPosted: Thu May 21, 2015 2:49 pm 
Offline
Senior Member
User avatar

Joined: Tue Apr 13, 2004 6:54 pm
Posts: 833
Are you running the command I said? That's _not_ the command you wrote.

openssl req -newkey rsa:2048 > new.cert.csr
openssl rsa -in privkey.pem -out new.cert.key

_________________
Rgds

Stephen

(Linux user since kernel version 0.11)


Top
   
PostPosted: Thu May 21, 2015 5:24 pm 
Offline
Senior Newbie

Joined: Tue Jun 18, 2013 11:40 am
Posts: 8
I found the mistake I was over my hard disk quota, I could not do anything.

Thanks again


Top
   
Display posts from previous:  Sort by  
Post new topic  Reply to topic


Who is online

Users browsing this forum: No registered users and 3 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum

Search for:
Jump to:  
RSS

Powered by phpBB® Forum Software © phpBB Group