Featured:
Allergies
Tech Know
Grilling Guide
eHow Now Blog

How to sign an IIS SSL certificate request with OpenSSL on Linux

How to sign an IIS SSL certificate request with OpenSSL on Linux thumbnail
sign an IIS SSL certificate request with OpenSSL on Linux

SSL, or Secure Sockets Layer, is a protocol that encrypts data used for transmitting secure information over the Internet. Servers such as Microsoft's Internet Information Server -- IIS -- require proper authorization and unencryption tool for transmitting data sent through SSL. An IIS SSL certificate request must be signed so that encryption and unencryption can take place as needed, securely. Small businesses typically pay money to third parties to facilitate secure communication with their customers. However, you can do it yourself if you have access to a machine with Linux and OpenSSL on it.

Things You'll Need

  • A computer
  • An IIS SSL certificate request file
  • A computer with OpenSSL installed
Show More

Instructions

    • 1

      Use IIS on your Windows machine to generate your IIS SSL certificate request file, which should be named certreq.txt by default.

    • 2

      Transfer this file to your Linux machine using whatever method you like -- put the file on a USB flash drive, email it to yourself or transfer it across the network, for instance.

    • 3

      Generate a private key to sign the certificate with. You can use a smaller or larger number of bits, but 2048 bits works well. Enter a pass phrase at the command prompt of your Linux machine as follows:

      # openssl genrsa -des3 -out cakey.pem 2048

    • 4

      Create the CA certificate to sign with by typing the following at the command prompt:

      # openssl req -new -key ca.key -x509 -days 9999 -out ca.crt

    • 5

      Sign the IIS certificate with the new CA you have just generated:

      # openssl x509 -req -days 9999 -in certreq.txt -CA ca.cer -CAkey ca.key -CAcreateserial -out iis.cer

    • 6

      Your new, signed certificate is the file iis.cer. Transfer this file back to the Windows machine, and load it up into IIS. It will remain valid for 9999 days, or about 27 years.

Tips & Warnings

  • Remember, all Linux commands are case sensitive.

  • When using your certificate, remember that most browsers will pop up a warning saying that the certificate was not signed by a known authority. However, the security is still 100% solid. Because of the warning, this method is not recommended for production websites.

Suggest item

Related Searches:

References

Comments

  • goodselfme Feb 15, 2009
    good post!

You May Also Like

  • Openssl View Cert Information

    Internet commerce is increasing at a rapid rate, and the need for security continues to be of concern to all who buy...

  • How to Find the OpenSSL Version Number

    OpenSSL provides you with a secure encryption option for your Internet web host server. OpenSSL allows you to add security for your...

  • How do I Disable SSL in IIS 6.0?

    SSL or Secure Socket Layer, is a widely used protocol that provides security to all communications in your company or organization's server....

  • How to Install SSL Certificates

    Secure Sockets Layer certificates are the industry standard for protecting information being transmitted over the Internet between a website and a consumer....

  • How to Create OpenSSL Certificates

    The Internet explosion has been of tremendous benefit to businesses around the globe, and along with the economic benefits, some disadvantages exist....

  • How to Add an SSL Certificate to OpenSSL

    The Internet has been a boon to businesses and research institutions around the world, but it has also been a boon to...

  • How to Renew an SSL Certificate on IIS 6

    SSL certificates help Web browsers verify the ownership of secure websites. They cannot be forged and help confirm the domain name of...

  • How to Sign an SSL Certificate

    The advent of the Internet has brought the world of technology to everyone's desktop. And with that come the security risks inherent...

  • How to Install SSL Certificate on Linux

    The native Web browser of the Linux operating system is Mozilla Firefox. In order for Firefox to properly display the contents of...

  • How to Encrypt a File Using OpenSSL

    OpenSSL is the standard for server security, but it provides more than just key and certificate infrastructure. It will also allow you...

  • How to Configure Apache2 SSL

    SSL (Secure Sockets Layer) is a way of providing security over an Internet connection by using a public and private key pair....

  • How to Generate a SSL Certificate

    Internet security is a much-discussed topic, with Internet fraud activity, identity theft, and phishing schemes abounding. Secure Socket Layer, or SSL, encrypts...

  • How to Create a Self-Signed Certificate in OpenSSL

    A self-signed certificate is created, signed and validated using a public key infrastructure library by the end-user. Self-signed certificates are not normally...

  • How to Create a New Certificate Request

    A new certificate request creates an encryption file for your Windows web host server. You create your certificate request in the Windows...

  • How to Setup SSL Ubuntu Apache

    The Apache project has produced a useful and powerful Web server in the Apache 2 server. Many Internet businesses use it to...

Related Ads

thumbnail
Featured