生成SSL自签名证书并测试
openssl genrsa -out server.key 2048 openssl req -new -key server.key -out server.csr注意,需要输入域名(Common Name (e.g. server FQDN or YOUR name)):
Country Name (2 letter code) [AU]:cn
State or Province Name (full name) [Some-State]:gd
Locality Name (eg, city) []:sz
Organization Name (eg, company) [Internet Widgits Pty Ltd]:company
Organizational Unit Name (eg, section) []:section
Common Name (e.g. server FQDN or YOUR name) []:zlm.com
Email Address []:xiachu@qq.com
Please enter the following 'extra' attributes
to be sent with your certificate request
A challenge password []:
An optional company name []:zlmopenssl x509 -req -days 3650 -in server.csr -signkey server.key -out server.crt执行该命令会打印以下信息:
Signature ok
subject=/C=cn/ST=gd/L=sz/O=company/OU=section/CN=zlm.com/emailAddress=xiachu@qq.com
Getting Private keycat server.key server.crt > ./ssl.pem./MediaServer -s ./ssl.pem
cat ./ssl.pem
-----BEGIN RSA PRIVATE KEY-----
base64内容
-----END RSA PRIVATE KEY-----
-----BEGIN CERTIFICATE-----
base64内容
-----END CERTIFICATE-----如果不是-----BEGIN RSA PRIVATE KEY----- 可以重新开始第4部,将文件调换下顺序,重新合并