A tool to create self signed Certificate Authority and Server Certificate using OpenSSL. Note: Those certificates should only be used for private/development usage! Use an offical CA for your public pages!
Was tested February 2022 with iOS Version 15.2.1, macOS 11.2.2 and Windows 10.
Kudos to TechSchool. Their video Create & sign SSL/TLS certificates with openssl was used as a source to generate this tool.
- Clone Repo
- Add all required url´s to server-ext.cnf
- Update line 10 with data of your own CA. The values must not be realistic domains/names.
- Update line 16 with data of your server. So enter the planned domain (e.g. myserver.mydomain.com). The values must not be realistic domains/names but if you configure it in your own domain, you cannot reach them in the public Internet anymore.
- Run
chmod +x gen.sh
- This makes the script executable - Run
./gen.sh
- Generated documents should appear in same folder
- ca-cert.srl --> Serialnumber of the generated CA
- ca-cert.pem --> The CA´s certificate used for server certificate generation
- ca-key.pem --> The CA´s private key used for server certificate generation
- server-req.pem --> The request created via line 16
- serer-cert.pem --> The server certificate
- server-key.pem --> The server private key
- ca-cert.cer --> The CA´s certificate used for server certificate generation (windows format as .cer)