Security Environment Setup

Where SSL Files already exist (Preferable)

File	Preparation
CA Certificate	Copy it to the server root (/) folder and rename it as ca.crt
Server Key	Copy it to the server root (/) folder and rename it as server.key
Server Certificate	Copy it to the server root (/) folder and rename it as server.crt

Where SSL Files do not already exist

If the server has no official key or certificate that has been signed by a public CA, proceed as follows:

1. Navigate to the openssl scripts directory on the server:

   cd ~/scripts/environment/openssl
   

2. Invoke the generate keys and certificates script:

   ./generate_keys_and_certificates.sh
   

3. Follow the wizards instructions.

Note

Should you come across the following error: "Can't load /root/.rnd into RNG", please follow the Instructions below:

• Clear any file that might have been generated by the script: sudo rm /*.key && sudo rm /*.cnf && sudo rm /*.crt

• Create the /root/.rnd file file: sudo touch /root/.rnd

• Rerun the instructions above.