Sugar Labs

Sysadmin/SSL Certificates: Difference between revisions

← Older editNewer edit →
No edit summary
Line 1: Line 1:
We use StartCom's StartSSL for our certificates.  
We use StartCom's StartSSL for our certificates.  


# Generate a key and a CSR: (we use <code>-batch</code> because StartSSL ignores everything but the public key in the CSR)<br/><code>openssl genrsa -out secret.key 2048<br/>openssl req -batch -new -key secret.key -out request.csr</code>
# Generate a key and a CSR: (we use <code>-batch</code> because StartSSL ignores everything but the public key in the CSR)<br/><code>openssl genrsa -out secret.key 2048<br/>openssl req -batch -new -key CNAME.sugarlabs.org.key -out CNAME.sugarlabs.org.csr</code>
# Log into the [https://startssl.com/ StartSSL control panel].  
# Log into the [https://startssl.com/ StartSSL control panel].  
# If you need to reconfirm access to the Sugar Labs domain (which is required every 30 days), do the following:
# If you need to reconfirm access to the Sugar Labs domain (which is required every 30 days), do the following:
Retrieved from "https://wiki.sugarlabs.org/go/Sysadmin/SSL_Certificates"