It is supposed you have already installed XAMPP wit apache and SSL support and you just wish to change certificate details
It means:
-your server will display what you will write in your certificate
-your certificate will be presented as been untrusted. It is not the case if your company is registered as being SSL provider.
You need access as root on the server.
Open ssh connection or open a console and login as root.
1) Create a temporary folder and go to that folder (it is not mandatory as long as you know where you are and what filw will be created)
# mkdir temp-ssl
#cd temp-ssl
2) create private key file (PK)
Will be created server.key file
#openssl genrsa -des3 -out server.key 1024
Generating RSA private key, 1024 bit long modulus
….++++++
…………++++++
e is 65537 (0×10001)
Enter pass phrase for server.key: HERE YOU MUST ENTERE A PHARSE (keep in mind, you will need it lated !!!!)
Verifying – Enter pass phrase for server.key:
3) create a certificate request file (CSR)
Will be created server.csr
# openssl req -new -key server.key -out server.csr
Enter pass phrase for server.key: ENTER THE SAME PHARSE as above
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter ‘.’, the field will be left blank.
—–
Country Name (2 letter code) [AU]:
State or Province Name (full name) [Some-State]:NSW
Locality Name (eg, city) []:Sydney
Organization Name (eg, company) [Internet Widgits Pty Ltd]:OLALA.COM.AU(TM)
Organizational Unit Name (eg, section) []:SSL
Common Name (eg, YOUR name) []:Administrator
Email Address []:ssladmin@olala.com.au
Please enter the following ‘extra’ attributes
to be sent with your certificate request
A challenge password []:ENTERE A PASSWORD
An optional company name []:OLALA.COM.AU
4) Remove password protection from server.key
You need it unless you wish to enter it any time apache start. Do not do it so … save secured key in a safe place, make a copy of it and unprotect it
You will have two files:
server.key.secure (keep it in a safe place)
server.key – you will need it
# cp server.key server.key.secure
# openssl rsa -in server.key.secure -out server.key
5) Generate the certificate file (CRT)
you will have server.crt – you will need it
# openssl x509 -req -days 365 -in server.csr -signkey server.key -out server.crt
Signature ok
subject=/C=AU/ST=NSW/L=Sydney/O=OLALA.COM.AU(TM)/OU=SSL/CN=Administrator/emailAddress=ssladmin@olala.com.au
Getting Private key
Enter pass phrase for server.key: ENTER PHARSE – the same like you entered at point 2) and 3(
6) Based on assumption you have /opt/lampp
copy as following (OVERWRITE)
#cp server.key in /opt/lampp/etc/ssl.key/server.key
#cp server.crt in /opt/lampp/etc/ssl.crt/server.crt
7) Restart apache
#/opt/lampp/lampp restart apache
Now all your websites hosted and accessed via https will show your self signed SSL certificate.
Note for windows users:
1) To get console
Start-> Run and type cmd [Enter]
A black window will be opened and a prompt waits for your commands:
Usually you get :
C:\Documents and Settings\Administrator>
2) .key and .crt files are usually located into
YOUR_XAMPP_FOLDER/apache/conf/ssl.key/
YOUR_XAMPP_FOLDER/apache/conf/ssl.crt/
3) replace cp command with copy
Loading ...
