Presentation is loading. Please wait.

Presentation is loading. Please wait.

SSL Certificates.

Published byNikolas Geier Modified over 6 years ago

Similar presentations

Presentation on theme: "SSL Certificates."— Presentation transcript:

1 SSL Certificates

2 Create Certificate Request
Certificates are free for *.ncsa.illinois.edu domains On the machine you are requesting an SSL, run the following command: openssl req -nodes -newkey rsa:4096 -sha256 -keyout myserver.ncsa.illinois.edu.key -out myserver.ncsa.illinois.edu.csr Can be rsa:2048 for web server, but I think it’s only good for 1 year

3 Certificate Request (2)
Field Field Value Organization University of Illinois Organizational Unit (or Department) NCSA Locality Urbana State/Province IL Country (2 character ISO code) US Common Name covercrop.ncsa.Illinois.edu Mail the CSR to to create a ticket, the KEY file is the private key!

4 Installing the Certificates
You should install both the primary and intermediate certificates Primary: X509 Certificate only, Base64 encoded Intermediate: X509 Intermediates/root only, Base64 encoded You should have two files, myserver_cert.cer and myserver_interm.cer Copy the files to your server and cat the files for f in *.cer; do (cat "${f}"; echo) >> nginx.crt; done Copy nginx.crt and the original private KEY file to /etc/ssl

5 Configure NGINX For NGINX, edit /etc/nginx/sites-enabled/your-site
If you don’t already have it, you will need to add a server block for SSL server { listen 443; ssl on; ssl_certificate /etc/ssl/nginx.crt ssl_certificate_key /etc/ssl/nginx.key etc } Backup the /certs in lastpass

6 SSL Request Resources quests

Download ppt "SSL Certificates."

Similar presentations

HTTPS/SSL Oleh: Idris Winarno. Persiapan Pastikan repository debian # vim /etc/apt/sources.list deb etch main contrib non-freehttp://kebo.vlsm.org/debian.

HTTPS/SSL Oleh: Idris Winarno. Persiapan Pastikan repository debian # vim /etc/apt/sources.list deb etch main contrib non-freehttp://kebo.vlsm.org/debian.
Apache2 HTTPS. 1. Install webserver Apache # apt-get install apache2 2. Buat direktori untuk menyimpan file https # mkdir /var/www/secure 3. Instalasi.

Apache2 HTTPS. 1. Install webserver Apache # apt-get install apache2 2. Buat direktori untuk menyimpan file https # mkdir /var/www/secure 3. Instalasi.
SSL Implementation Guide Onno W. Purbo

SSL Implementation Guide Onno W. Purbo
NODEMANAGER WEBLOGIC SERVER. 1.Creating logical machines 2.Using nodemanager for server startup and shutdown GETTING STARTED.

NODEMANAGER WEBLOGIC SERVER. 1.Creating logical machines 2.Using nodemanager for server startup and shutdown GETTING STARTED.
Chinese Information Processing (I): Basic Concepts and Practice Unit 7: Web Pages in Chinese.

Chinese Information Processing (I): Basic Concepts and Practice Unit 7: Web Pages in Chinese.
SSL Man in the Middle Proxy Srinivas Inguva Dan Boneh Ian Baker Stanford University.

SSL Man in the Middle Proxy Srinivas Inguva Dan Boneh Ian Baker Stanford University.
Customizing X.509 Certificate Fields Charles D. Short CS526 – S2008 University of Colorado, Colorado Springs Dr. C. Edward Chow 5/5/2008CDS - UCCS CS526.

Customizing X.509 Certificate Fields Charles D. Short CS526 – S2008 University of Colorado, Colorado Springs Dr. C. Edward Chow 5/5/2008CDS - UCCS CS526.
TLS/SSL Review. Transport Layer Security A 30-second history Secure Sockets Layer was developed by Netscape in 1994 as a protocol which permitted persistent.

TLS/SSL Review. Transport Layer Security A 30-second history Secure Sockets Layer was developed by Netscape in 1994 as a protocol which permitted persistent.
Zach Miller Condor Project Computer Sciences Department University of Wisconsin-Madison Lockdown of a Basic Pool.

Zach Miller Condor Project Computer Sciences Department University of Wisconsin-Madison Lockdown of a Basic Pool.
APACHE SERVER By Innovationframes.com »

APACHE SERVER By Innovationframes.com »
Securing LAMP: Linux, Apache, MySQL and PHP Track 2 Workshop PacNOG 7 July 1, 2010 Pago Pago, American Samoa.

Securing LAMP: Linux, Apache, MySQL and PHP Track 2 Workshop PacNOG 7 July 1, 2010 Pago Pago, American Samoa.
Apache Security with SSL Using FreeBSD SANOG VI IP Services Workshop July 18, 2005 Hervey Allen Network Startup Resource Center.

Apache Security with SSL Using FreeBSD SANOG VI IP Services Workshop July 18, 2005 Hervey Allen Network Startup Resource Center.
Closing of cApex10 & Fopro10 NOTE: Trial balance should be tallied before closing.  Step1: Check free Disk space on Drive where Oracle is Installed.

Closing of cApex10 & Fopro10 NOTE: Trial balance should be tallied before closing.  Step1: Check free Disk space on Drive where Oracle is Installed.
Secure Sockets Layer (SSL) Fred Schank Kevin Wetter.

Secure Sockets Layer (SSL) Fred Schank Kevin Wetter.
Zach Miller Condor Project Computer Sciences Department University of Wisconsin-Madison Securing Your Condor Pool With SSL.

Zach Miller Condor Project Computer Sciences Department University of Wisconsin-Madison Securing Your Condor Pool With SSL.
CSCI 6962: Server-side Design and Programming

CSCI 6962: Server-side Design and Programming
IT:Network:Applications.  Single Key (Symmetric) encryption ◦ One “key” or passphrase used to encrypt and decrypt ◦ FAST – good for large amounts of.

IT:Network:Applications.  Single Key (Symmetric) encryption ◦ One “key” or passphrase used to encrypt and decrypt ◦ FAST – good for large amounts of.
Adding Multimedia Extensions to X.509 Certificates Nicholis Bufmack CS 525 – Spring 2008.

Adding Multimedia Extensions to X.509 Certificates Nicholis Bufmack CS 525 – Spring 2008.
OSG PKI Grid Admin (GA) Training Mine Altunay, Jim Basney OSG PKI Team October 8, 2012.

OSG PKI Grid Admin (GA) Training Mine Altunay, Jim Basney OSG PKI Team October 8, 2012.
A Guide to Secure Web Services with GJXML Hey I downloade d an IEPD! Cool, how do you write a web service? I use.NET Moo! I use Java.

A Guide to Secure Web Services with GJXML Hey I downloade d an IEPD! Cool, how do you write a web service? I use.NET Moo! I use Java.

Similar presentations

Ads by Google