12.3.1. Generating a self-signed certificate


You are looking at documentation for an older release. Not what you want? See the current release documentation.

Generating a self-signed certificate can be done with OpenSSL. Once again, a self-signed certificate must be used only for testing purpose, never in production. Use the following command to generate the certificate:

openssl req -x509 -nodes -newkey rsa:2048 -keyout cert-key.pem -out cert.pem -subj '/O=MYORG/OU=MYUNIT/C=MY/ST=MYSTATE/L=MYCITY/CN=proxy1.com' -days 730

You will use cert-key.pem to certificate the Apache/Nginx server proxy1.com, so the part "CN=proxy1.com" is important.


When using a self-signed certificate, users will need to point their browser to https://proxy1.com and accept the security exception.

Copyright ©. All rights reserved. eXo Platform SAS
blog comments powered byDisqus