How do i create a self signed certificate with openssl?
-
-x509 This option outputs a self signed certificate instead of a certificate request. This is typically used to generate a test certificate or a self signed root CA. The extensions added to the certificate (if any) are specified in the configuration file. Unless specified using the set_serial option, a large random number will be used for the serial number. If existing request is specified with the -in option, it is converted to the self signed certificate otherwise new request is created.
-nodes If this option is specified then if a private key is created it will not be encrypted.
This command will create a self-signed certifcate.
$ openssl req -x509 -sha256 -nodes -newkey rsa:2048 -keyout myselfsigned.key -out mycert.pem
You can use this for your application, ELB, apache, etc.
© Lightnetics 2024