Linux self signed cert with openssl and import into Chrome
$30-250 CAD
I përfunduar
Postuar over 1 year ago
$30-250 CAD
Paguhet në dorëzim
Hello !
I need someone to guide me through the command line to complete this task.
You will not have access to the VM.
I have an isolated VM on a LAN which only has a common name and no external DNS entries. It uses OpenLiteSpeed as a web server and I need to create a self signed certificate so that the web server can use it, and finally, import it into Chrome so that the red warning disappears whenever I access it. I know how to configure the web server and import the SSL into Chrome and I was able to make the whole thing work once but now it doesn't work anymore. I undid something somewhere and now I am stuck and have limited time. I am on Rocky Linux 8 (same as Red Hat).
Tasks involved:
- Correct the steps outlined below so that I can replicate and apply by my side
1- [GENERATE AND SIGN CERTIFICATE]
% cd /usr/local/lsws
Generate an RSA private key of size 2048:
% openssl genrsa -des3 -out [login to view URL] 2048
Generate a root certificate:
% openssl req -x509 -new -nodes -key [login to view URL] -sha256 -out [login to view URL]
To check just created root certificate:
% openssl x509 -in [login to view URL] -text -noout
Create a private key to be used during the certificate signing process:
% openssl genrsa -out [login to view URL] 2048
Use the private key to create a certificate signing request:
% openssl req -new -key [login to view URL] -out [login to view URL]
Create a config file:
% vi [login to view URL]
# Extensions to add to a certificate request
basicConstraints = CA:FALSE
authorityKeyIdentifier = keyid:always, issuer:always
keyUsage = nonRepudiation, digitalSignature, keyEncipherment, dataEncipherment
subjectAltName = @alt_names
[ alt_names ]
DNS.1 = <domain name>
Sign the CSR using [login to view URL]:
% openssl x509 -req -in [login to view URL] -CA [login to view URL] -CAkey [login to view URL] -CAcreateserial -out [login to view URL] -sha256 -extfile [login to view URL]
Verify that the certificate is built correctly:
% openssl verify -CAfile [login to view URL] -verify_hostname <domain name> [login to view URL]
Set permissions:
% chmod 600 rootCA*
% chmod 600 tls*
% chmod 600 [login to view URL]
2- [RELOAD WEB SITE TO RELOAD THE SSL CERTIFICATE]
It references:
Private Key File /usr/local/lsws/[login to view URL]
Certificate File /usr/local/lsws/[login to view URL]
3- [IMPORT CERTIFICATE INTO CHROME]
ref: [login to view URL]
Hi there,
I have gone through your project details and would like to tell you that l have a great bunch of experience in Linux, OpenSSL, Google Chrome, System Admin and SSL. For that I
would require from your end to start a chat with me to discuss aboutLinux self signed cert with openssl and import into Chrome more deeply and get things started as soon as
possible. You can check my profile that I have 100% completion rate on my projects and would like to carry on with this streak so it
would be my pleasure to build long term relationship with you. All my skills are related to this particular project.
Hoping to hear from you soon. Cheers.
Rashid Amjad.
I am a server administrator. I completely understand what you want here and can complete the task remotely.
Pay me after the work is completed.
Available right now for the chat.
Hi
Greetings!
I am available right now for the project discussion and can start the project
on an immediate basis. I have understood your project requirement
I have7++ experience in design and development. I can handle projects from small
styling to full development from scratch. I will provide a good result in a short time
and satisfy you fully.
We have experienced developers in
System Admin
Linux
Google Chrome
OpenSSL
SSL
WHY-ME:
» Ready to Start as Immediate& Proper Testing.
» Keep your Data & Website Secure: Daily Progress Updates.
» You will get 30-days FREE BUG-SUPPORT even after Project-Completion
Please give me in touch and let's discuss more detail about your task via chat.
Project milestones will be decided during chat
Thanks and Regards
Deepika Jain
Black Grapes Softech