warning: Creating default object from empty value in /data/web/1/000/027/003/273448/htdocs/ on line 33.

Create and install StartCom SSL certificate

openssl \
req \
-nodes \
-newkey rsa:2048 \
-keyout \
-out \
-subj "/C=DE/ST=NRW/L=Berlin/O=My Inc/OU=DevOps/"

a2enmod ssl
a2ensite default-ssl
service apache2 restart

cp /tmp/2_*.crt /etc/ssl/certs/
cp /tmp/1_root_bundle.crt /etc/ssl/certs/
cp /tmp/*.key /etc/ssl/private/

SSLEngine on
SSLProtocol all -SSLv2 -SSLv3


# check certificate

# list certificate domains
cat cert.pem | openssl x509 -text | grep DNS
openssl s_client -showcerts -connect | openssl x509 -text | grep DNS

# letsencrypt

# StartCom /

# remove password from private key
openssl rsa -in www.example.key.pass -out www.example.key

# Links


# check local certificate
openssl x509 -text -in /etc/ssl/certs/

# check remote certificate
openssl s_client -connect | openssl x509 -text -noout

letsencrypt / certbot

sudo apt-get install software-properties-common
sudo add-apt-repository -y ppa:certbot/certbot
sudo apt-get update
sudo apt-get install -y certbot

# Install certbot package with Ansible:

# install
# Ubuntu Xenial package
apt-get install lets-encrypt

apt-get install -y git
git clone /opt/letsencrypt
/opt/letsencrypt-auto --help all

# create letsencrypt certificate

Syndicate content