Op de Linux-machine waarop je hem wilt gebruiken (Apache)
openssl req -newkey rsa:1024 -keyform PEM -outform PEM -nodes \ -keyout server.domein.nl.1.key \ -out server.domein.nl.1.csr Country Name (2 letter code) [GB]:NL State or Province Name (full name) [Berkshire]:Provincie Locality Name (eg, city) [Newbury]:Plaats Organization Name (eg, company) [My Company Ltd]:bedrijfnaam Organizational Unit Name (eg, section) []:Web Services Common Name (eg, your name or your server's hostname) []: server.domein.nl Email Address []:support@bedrijf.nl Please enter the following 'extra' attributes to be sent with your certificate request A challenge password []: An optional company name []:
CA staat voor Certificate Authority.
Zoals Xolphin, http://www.sslcertificaten.nl/
=⇒ server.domein.nl.1.csr
plus het Root-certificaat en soms ook een Intermediate Certificaat
⇐= server.domein.nl.1.crt ⇐= ca.root.crt ⇐= intermediate.crt
vi /etc/httpd/conf.d/ssl.conf SSLCertificateFile server.domein.nl.1.crt SSLCertificateKeyFile server.domein.nl.1.key SSLCertificateChainFile intermediate.crt SSLCACertificateFile ca.root.crt