====== How to create a self-signed certificate ? ======

  * Private key generation: <code>openssl genrsa -out ./server.key 1024</code>
  * Public key (certificate) generation: <code>openssl req -new -key ./server.key -x509 -days 3650 -out ./server.crt</code> (3650 means ten years of validity)
  * View the certificate content (human read):<code>openssl x509 -in server.crt -text -noout</code>
  * Then you can use this certificat for example in your apache serveur to handle HTTPS urls :<code apache>
    SSLEngine On
    SSLCertificateFile    /etc/apache2/ssl/server.crt
    SSLCertificateKeyFile /etc/apache2/ssl/server.key
</code>




{{tag>article computing x509 certificate self-signed}}
~~DISCUSSION~~