If you want to test SSL on your web server, you probably want to generate a self-signed certificate before ordering up the real one.
\nThere are three steps:
\n– generate SSL key w\/o passphrase
\n– generate certificate request
\n– generate self-signed certificate<\/p>\n
# cd \/etc\/httpd\/conf\r\n# mkdir ssl.key ssl.csr ssl.crt\r\n# openssl genrsa -out \/etc\/httpd\/conf\/ssl.key\/myserver.net.key 1024\r\n# openssl req -new -key \/etc\/httpd\/conf\/ssl.key\/myserver.net.key -out \/etc\/httpd\/conf\/ssl.csr\/myserver.net.key.csr\r\n# openssl req -new -key \/etc\/httpd\/conf\/ssl.key\/myserver.net.key -x509 -out \/etc\/httpd\/conf\/ssl.crt\/myserver.net.crt -days 999\r\n# ln -s ssl.crt\/myserver.net.crt server.crt\r\n# ln -s ssl.key\/myserver.net.key server.key<\/pre>\nand add the following to the bottom of your\u00a0\/etc\/httpd\/conf\/httpd.conf<\/em>\u00a0file, remembering to substitute your own IPs and hostnames:<\/p>\n
NameVirtualHost 192.168.1.19:80\r\nNameVirtualHost 192.168.1.19:443\r\n\r\n<VirtualHost foo.myserver.net:80>\r\n ServerName foo.myserver.net\r\n ServerAdmin webmaster@myserver.net\r\n DocumentRoot \/var\/www\/html\r\n<\/VirtualHost>\r\n\r\n<VirtualHost foo.myserver.net:443>\r\n ServerName foo.myserver.net\r\n ServerAdmin webmaster@myserver.net\r\n DocumentRoot \/var\/www\/html\r\n SSLEngine on\r\n SSLCertificateFile conf\/server.crt\r\n SSLCertificateKeyFile conf\/server.key\r\n<\/VirtualHost><\/pre>\nand restart the web server:<\/p>\n
# service httpd restart<\/pre>\nNow navigate to your https URL in a browser. You will have to add a security exception in your browser for the unvalidated self-signed certificate.<\/p>\n