rh333 - 利用apache搭建简易https服务器
安装httpd以及ssl包
yum install httpd mod_ssl -y
生成web服务器私钥和证书请求文件(csr)
cd /etc/httpd/conf/
openssl genrsa out httpd.key 1024
openssl req -new -key httpd.key -out httpd.csr
使用自建的CA中心签名web服务器公钥
cd /etc/httpd/conf/
openssl ca -in httpd.csr -out httpd.crt
如何搭建CA中心请参考:
rh333 - 搭建简易CA中心
http://blog.csdn.net/t0nsha/article/details/8816288
配置apache启用ssl支持
<VirtualHost 192.168.0.20:443>
DocumentRoot /var/www/html/www20
ServerName www20.example.com
SSLEngine on
SSLCertificateFile /etc/httpd/conf/httpd.crt
SSLCertificateKeyFile /etc/httpd/conf/httpd.key
</VirtualHost>
重起httpd服务并测试
/etc/init.d/httpd restart
查看已签名证书的指纹
openssl x509 -fingerprint -in httpd.crt -noout -sha1
openssl x509 -fingerprint
安装httpd以及ssl包
yum install httpd mod_ssl -y
生成web服务器私钥和证书请求文件(csr)
cd /etc/httpd/conf/
openssl genrsa out httpd.key 1024
openssl req -new -key httpd.key -out httpd.csr
使用自建的CA中心签名web服务器公钥
cd /etc/httpd/conf/
openssl ca -in httpd.csr -out httpd.crt
如何搭建CA中心请参考:
rh333 - 搭建简易CA中心
http://blog.csdn.net/t0nsha/article/details/8816288
配置apache启用ssl支持
<VirtualHost 192.168.0.20:443>
DocumentRoot /var/www/html/www20
ServerName www20.example.com
SSLEngine on
SSLCertificateFile /etc/httpd/conf/httpd.crt
SSLCertificateKeyFile /etc/httpd/conf/httpd.key
</VirtualHost>
重起httpd服务并测试
/etc/init.d/httpd restart
查看已签名证书的指纹
openssl x509 -fingerprint -in httpd.crt -noout -sha1
openssl x509 -fingerprint