如何使用cacert.org设置ssl

时间:2015-06-01 12:32:19

标签: ssl https ca

我有一个免费域名,说example.ml,我在byethost.com上托管了我的文件。我想在我的网站上实现免费的ssl。我已登录cacert网站。添加并验证了我的域名。而现在我被卡住了。我不知道如何从这个阶段建立一个ssl证书。

逐步解释会非常有用。

2 个答案:

答案 0 :(得分:1)

First, you need the CSR (your public key with some information).

To generate it you have to use the tool that your server provide would be easier (such as Apache Tomcat :: using keytool, Linux :: using openssl)

Then, sending your CSR file to the certificate vendor to verify and insert Root certificate.

They will send you back certificate file.

So, you need to use this certificate file for import into your secret key which you get it from the key-pair generate process on the first step.

Finally, setup your key into your server and config some property in web server config file.

These are the concept, for the technical you need to know what platform you used and find the way to use their provided tool.

答案 1 :(得分:1)

  1. 生成私钥并将其安全地保存在文件系统中。
  2. 使用它生成CSR。
  3. 您可以将openSSL用于1和2。 请参阅:http://www.rackspace.com/knowledge_center/article/generate-a-csr-with-openssl

    1. 通过将CSR的内容复制到服务器证书,从cacert.org获取签名的服务器证书 - >新。将其保存在您的文件系统中。

    2. 您需要将Appserver / Web服务器指向存储私钥和签名服务器证书的位置。阅读文档。

    3. 如果是Apache网络服务器,您可以参考:https://techstrum.wordpress.com/2014/11/25/how-to-enable-ssl-for-ohs-oracle-http-sever/