Web client & Security

Getting Started With OpenSSL Client BY Athuljith AP




LET'S ANALYSE THE GENERATED PUBLIC KEY




USE OPEN SSL TO GENERATE ACCOUNT KEY PAIR:
  1. MAKE AN ACCOUNT PRIVATE KEY USING :
    openssl genrsa 4096 > account.key
  2. PRINT YOUR KEY ON SHELL:
    openssl rsa -in account.key -pubout
  3. LET'S PASTE THE PUBLIC KEY INTO THE BOX.




EXPLAIN ABOUT YOUR DOMAIN'S


CREATE YOUR CERTIFICATE SIGNING REQUEST WITH:
  1. IF YOU DO NOT HAVE ANY TLS PRIVATE KEY:
    openssl genrsa 4096 > domain.key
  2. MAKE CSR FOR THE DOMAINS YOU WANT TO USE:
    Linux:
    #change "/etc/ssl/openssl.cnf" as needed:
    #  Debian: /etc/ssl/openssl.cnf
    #  RHEL and CentOS: /etc/pki/tls/openssl.cnf
    #  Mac OSX: /System/Library/OpenSSL/openssl.cnf
    
    openssl req -new -sha256 -key domain.key -subj "/" \
      -reqexts SAN -config <(cat /etc/ssl/openssl.cnf \
      <(printf "\n[SAN]\nsubjectAltName=DNS:athuljith.com,DNS:www.athuljith.com"))
    
  3. LET'S PASTE THE CSR INTO THE BOX.




GETTING START WITH SIGNATURE GENERATION



VERIFY YOUR DOMAIN NAME'S WITH "ATHULJITH"



HOORRAYY !!! INSTALL YOUR SSL CERTIFICATE

COPYRIGHT 2018. "ATHULJITH SSL PROJECT" .