You are looking at documentation for an older release. Not what you want? See the current release documentation.
Generating a self-signed certificate can be done with OpenSSL. Once again, a self-signed certificate must be used only for testing purpose, never in production. Use the following command to generate the certificate:
openssl req -x509 -nodes -newkey rsa:2048 -keyout cert-key.pem -out cert.pem -subj '/O=MYORG/OU=MYUNIT/C=MY/ST=MYSTATE/L=MYCITY/CN=proxy1.com' -days 730
You will use cert-key.pem to certificate the Apache/Nginx server proxy1.com, so the part
"CN=proxy1.com" is important.
When using a self-signed certificate, users will need to point their browser to https://proxy1.com and accept the security exception.