Prev Next

Self-Signed SSL Certificates

There are many ways to create SSL certificates; however, we have found the OpenSSL toolkit to be the easiest and most comprehensive. As the name suggests, OpenSSL is an open source toolkit for SSL/TLS; see the official website for details.

You will need to download and install the OpenSSL product that suits your environment. For the purposes of this document, OpenSSL was installed into C:\OpenSSL-Win64. If your OpenSSL is installed into a different directory then these steps will have to be adjusted to suit.

  • Create a new command/batch file in C:\OpenSSL-Win64\bin\
  • Open this file and paste these details into it

      set SRVNAME=localhost

      openssl genrsa -out %SRVNAME%.key 2048

      openssl req -new -x509 -key %SRVNAME%.key -out %SRVNAME%.cert -days 3650 -subj /CN=%SRVNAME%

      copy /b %SRVNAME%.cert+%SRVNAME%.key server.pem