How To: Create Self-Signed Certificate – OpenSSL

What is a self-signed SSL certificate? A self-signed certificate is a certificate that is not signed by a trusted authority.

Nevertheless, the self-signed certificate provides the same level of encryption as a $100500 certificate signed by a trusted authority.

In this article i will show how to create a self-signed certificate that can be used for non-production or internal applications.

Cool Tip: Check the expiration date of the SSL Certificate from the Linux command line! The fastest way! Read more →

Create Self-Signed Certificate

Generate self-signed certificate using openssl:

$ openssl req -x509 -newkey rsa:4096 -keyout key.pem -out cert.pem -nodes -days 365 -subj '/CN=localhost'

Options that you might want to change while creating a self-signed certificate:

OptionDescription
-newkey rsa:4096 Generate a 4096 bit RSA key.
-keyout key.pem Save a key to the key.pem file.
-out cert.pem Save a certificate to the cert.pem file.
-nodes Do not protect the private key with a passphrase.
-days 365 The number of days to make a certificate valid for.
-subj '/CN=localhost' Use this option to suppress questions about the contents of the certificate. Replace localhost with your desired domain name.
0 (0)
Article Rating (No Votes)
Rate this article
Attachments
There are no attachments for this article.
Comments
There are no comments for this article. Be the first to post a comment.
Full Name
Email Address
Security Code Security Code
Related Articles RSS Feed
HowTo: Send Email from an SMTP Server using the Command Line
Viewed 417 times since Mon, Feb 18, 2019
LVM: Reduce SWAP size by shrinking existing Logical Volume
Viewed 734 times since Sat, Jun 2, 2018
RHCS6: Install a two-node basic cluster
Viewed 685 times since Sun, Jun 3, 2018
ZPOOL: Add a mirror to a concat zpool
Viewed 828 times since Sun, Jun 3, 2018
RHEL: Checking HBAs
Viewed 1386 times since Sun, May 27, 2018
HP-UX - Stunnel Configuration
Viewed 426 times since Fri, Sep 28, 2018
Lsyncd: live file syncronization across multiple Linux servers
Viewed 1115 times since Wed, Oct 31, 2018
How To Ping Specific Port Number
Viewed 162 times since Mon, Jun 1, 2020
Top 10 darmowych i publicznych serwerów DNS
Viewed 819 times since Tue, May 22, 2018
Using stunnel to Encrypt Database Connections
Viewed 993 times since Fri, Sep 28, 2018