Inhaltsverzeichnis

SSL Kommandos

KEY

openssl genrsa -aes128 -out XXXXXX.key 4096
openssl rsa -in XXXXXX.key -out XXXXXX.pem

CSR

openssl.conf für Wildcard und Multidomain-CSRs

openssl req -new -key XXXXXX.key -config openssl.cnf -out XXXXXX.csr
openssl req -new -key XXXXXX.key -out XXXXXX.csr

COMPARE

openssl x509 -modulus -in XXXXXX.crt -text -noout | grep "Modulus=" | openssl md5
openssl rsa -noout -modulus -in XXXXXX.key  | openssl md5
openssl req -noout -modulus -in XXXXXX.csr | openssl md5

APACHE

/usr/lib/ssl/misc/c_hash XXXXXX.pem
ln -l /etc/apache2/ssl/XXXXXX.pem 8d5867df.0

CHECKS

openssl req -text -noout -verify -in CSR.csr
openssl rsa -in privateKey.key -check
openssl x509 -in certificate.crt -text -noout

Retrieve Certificate

echo "" | openssl s_client -connect HOSTNAME:PORT -prexit 2>/dev/null | sed -n -e '/BEGIN\ CERTIFICATE/,/END\ CERTIFICATE/ p'