Provide Required Input in Attribute file
- NOTE - make sure there is no emty value set. script will automatically taking care of that.
Default value set in attribute.cfg file.
SR.NO | ATTRIBUTE | DEFAULT VALUE |
---|---|---|
1 | package_name | openssl |
2 | domain_name | example.com |
3 | country | IN |
4 | state | MAHARASHTRA |
5 | locality | PUNE |
6 | organization | example pvt ltd |
7 | organizationalunit | IT |
8 | [email protected] | |
9 | certificate_validity | 365 |
10 | password | test123 |
11 | upload_cert_dir | example.com |
- Update your input in attribute.cfg file.
- Assign execution permission to setup.sh.
- Please execute setup.sh using root account.
###1: Generate private key
openssl genrsa -des3 -out my_domain.key 1024 [Enter and confirm pass phrase]
###2: Generate CSR
openssl req -nodes -newkey rsa:2048 -keyout my_domain.key -out my_domain.csr
###3: Remove pass phrase from key
Make sure key only readable by root!
cp my_domain.key my_domain.key.org openssl rsa -in my_domain.key.org -out my_domain.key
###4: Generate certificate
openssl x509 -req -days 365 -in my_domain.csr -signkey my_domain.key -out my_domain.crt
- Go to AWS Control Panel -> EC2 Management Console -> Load Balancers
- Add listner to HTTPS
- Choose Upload SSL Certificate
- Display key text in terminal window:
openssl rsa -in my_domain.key -text
- Copy that, including “Begin…End” sections; paste into text field in AWS console Do the same with the certificate:
openssl x509 -inform PEM -in my_domain.crt
Several layers of saving…