RHEL5中http中ssl模块的配置，主要是证书、私钥的制作

来源： 作者： 时间：2007-12-03 Tag： 点击：

rhel4和rhel5中位置发生了点变化，所以证书创建位置也有所不同。如下所示：

5 directories, 7 files
[root@minot conf]# make
This makefile allows you to create:
o public/private key pairs
o SSL certificate signing requests (CSRs)
o self-signed SSL test certificates

To create a key pair, run "make SOMETHING.key".
To create a CSR, run "make SOMETHING.csr".
To create a test certificate, run "make SOMETHING.crt".
To create a key and a test certificate in one file, run "make SOMETHING.pem".

To create a key for use with Apache, run "make genkey".
To create a CSR for use with Apache, run "make certreq".
To create a test certificate for use with Apache, run "make testcert".

Examples:
make server.key
make server.csr
make server.crt
make stunnel.pem
make genkey
make certreq
make testcert

0 directories, 6 files
[root@server certs]# make
This makefile allows you to create:
o public/private key pairs
o SSL certificate signing requests (CSRs)
o self-signed SSL test certificates

To create a key for use with Apache, run "make genkey".
To create a CSR for use with Apache, run "make certreq".
To create a test certificate for use with Apache, run "make testcert".

To create a test certificate with serial number other than zero, add SERIAL=num

Examples:
make server.key
make server.csr
make server.crt
make stunnel.pem
make genkey
make certreq
make testcert
make server.crt SERIAL=1
make stunnel.pem SERIAL=2
make testcert SERIAL=3

描述：这台提供服务https的主机名是server.rhel5.com。原有的配置文件/etc/httpd/conf.d/ssl.conf

[root@server conf.d]# httpd -S
VirtualHost configuration:
wildcard NameVirtualHosts and _default_ servers:
_default_:443 server.rhel5.com (/etc/httpd/conf.d/ssl.conf:81)
Syntax OK

[root@server conf.d]# cat ssl.conf
.............
SSLCertificateFile /etc/pki/tls/certs/locale.crt
SSLCertificateKeyFile /etc/pki/tls/private/locale.key
..................

[收藏] [推荐] [评论] [打印] [关闭]

顶一下

上一篇：改造rhel5的DVD，使其可以进行yum库的更新
下一篇：没有了

最新评论共有 4 位网友发表了评论

查看所有评论

发表评论

栏目列表

91Linux!