Commit fbdcee59 authored by Pavel Spirek's avatar Pavel Spirek

Added HOWTO for server certificate generation

parent 76511d5b
Generating a server SSL certificate for testing purposes
To generate a new server certificate for Jetconf, which will be in the correct
form and accepted even by the more pedantic web browsers like Chrome, just run
the provided script in the following way:
./ <out_file_suffix> <domain/ip>
./ <out_file_suffix> <domain/ip> <server_key>
The first form will generate a new server private key, while the second one
lets you to pass the private key file as an argument.
./ example
will create a certificate "server_example.crt" for domain with new
private key.
The script will autodetect if the certificate is being issued for a domain
name or an IP address, and sets the appropriate SAN value.
If you want this certificate to be recognized as valid by your web browser,
the issuing CA's certificate needs to be imported to your browser.
WARNING: It is strongly recommended not to import the provided CA's
certificate (ca.pem) to your production browser, as it's private key is
publicly known. If you do so, someone could perform a MITM attack to
any connection with an SSL-protected website.
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment