Current location - Quotes Website - Personality signature - How to make ssl certificate How to make ssl certificate tutorial
How to make ssl certificate How to make ssl certificate tutorial
How to build "can be). A wildcard SSL certificate can protect a first-level domain name and all its second-level domains, and subsequent second-level domain names do not need to be re-examined and paid extra, which is very cost-effective.

The above is the introduction of how to fill in the SSL certificate domain name.

How does peanut shell ziy get ssl certificate?

The first step is to determine the domain name that needs to obtain SSL certificate. Special note: you need to be able to operate domain name resolution, otherwise you can't apply. If it is a public IP, you need to open port 80.

The second step is to submit the domain name or public IP for authentication, and the alternative scheme (GWORG) is available.

Step 3: Resolve the domain name or upload the file according to the prompt. 1- 15 minutes later, the SSL certificate file can be obtained.

After the installation is completed, according to the installation tutorial, if not, you can also assist in the installation.

How to apply for an HTTPS certificate?

How to apply for https security certificate and the application process of https security certificate.

(1) How to choose an appropriate https security certificate? You can see the conceptual diagram of choosing an https security certificate:

(2) After successfully purchasing the appropriate https security certificate, perform the following steps:

1. Generate certificate application file.

The first step for users to apply for an https certificate is to generate a CSR certificate request file. The system will generate two keys, a public key and a private key, which will be stored in the server. To generate CSR files, webmasters can refer to WEBSERVER documentation, APACHE, etc. , and use OPENSSL command line to generate KEY+CSR2 files, Tomcat, JBoss, Resin, etc. Use KEYTOOL to generate JKS and CSR files, and IIS creates a pending request and a CSR file through the wizard.

Warm reminder: If you apply for https certificate in Anxin SSL certificate, you can directly generate CSR file online.

Anxin SSL certificate -ComodoGeotrusthttpsEV certificate multi-domain SSL certificate application

2. Submit CSR to CA for certification.

CA institutions usually have two authentication methods:

Domain name authentication, generally by authenticating the administrator's mailbox, is very fast, but the certificate issued does not contain the enterprise name, but only shows the domain name of the website, which is what we often call domain-based https certificate. At present, the popular free https certificate is also a domain name https certificate.

Enterprise certificate authentication needs to provide the business license of the enterprise. It generally takes 1-5 working days for foreign https certificates to apply for CA certification.

At the same time, the certificates of the above two methods are authenticated, which is called

EVSSL certificate

EVSSL certificate can make the browser address bar green, so the authentication is also the most stringent. EVSSL certificates are mostly used in financial, e-commerce, securities and other fields that require high information security protection. 3. Obtain an https certificate and install it

After receiving the https certificate issued by CA, deploy the https certificate to the server. Generally, the APACHE file directly copies the KEY+CER into the file, and then modifies the HTTPD. CONF file. TOMCAT and others need to import the certificate CER file issued by CA into JKS file, copy it to the server, and then modify the server. XMLIIS needs to handle pending requests and import CER files.

(3) install SSL certificate;

How to get cassl certificate?

1, purchase voucher.

You need to buy an SSL certificate from a manufacturer like Gworg or a trusted CA institution.

2. Submit the domain name order.

Then submit your own domain name. In fact, this process will also determine the type of certificate, which will not be introduced here. Generally, you can use DV single domain names or DV wildcards.

3. Verify the domain name.

The domain name registrar will analyze the operation according to the system prompts, and the bank-level OV and EV will answer the phone to verify their identities.

4. Obtain SSL certificate.

After a few minutes, refresh the interface to download the certificate, which will contain SSL certificates of various server environment types.

5. Install the SSL certificate.

Follow the tutorial to configure SSL certificate for the server, or ask the issuing authority to install SSL certificate.