Security Environment Setup¶
Where SSL Files already exist (Preferable)¶
File |
Preparation |
---|---|
CA Certificate |
Copy it to the server root (/) folder and rename it as ca.crt |
Server Key |
Copy it to the server root (/) folder and rename it as server.key |
Server Certificate |
Copy it to the server root (/) folder and rename it as server.crt |
Where SSL Files do not already exist¶
If the server has no official key or certificate that has been signed by a public CA, proceed as follows:
Navigate to the openssl scripts directory on the server:
cd ~/scripts/environment/openssl
Invoke the generate keys and certificates script:
./generate_keys_and_certificates.sh
Follow the wizards instructions.
Note
Should you come across the following error: "Can't load /root/.rnd into RNG"
,
please follow the Instructions below:
Clear any file that might have been generated by the script:
sudo rm /*.key && sudo rm /*.cnf && sudo rm /*.crt
Create the
/root/.rnd
file file:sudo touch /root/.rnd
Rerun the instructions above.