| Version 6 (modified by , 8 years ago) (diff) |
|---|
Creating a TLS certificate
Bundle for nginx's ssl_certificate (site, intermediate, root)
## as root: cd '/root/certstore/wildcard-clarin-eu-new/' && printf '\n' > 'newline' && ## Concatenate certificates in this order for Nginx cat 'clarin.eu/cert/wildcard-clarin-eu.cer' 'newline' 'clarin.eu/cert/RapidSSLSHA256CA-G3.cer' 'newline' 'clarin.eu/cert/GeoTrustGlobalCA.cer' 'newline' > 'bundle.cer' dos2unix 'bundle.cer'
Bundle for nginx's ssl_trusted_certificate (root, intermediate)
## as root: cd '/root/certstore/wildcard-clarin-eu-new/' && printf '\n' > 'newline' && ## Concatenate certificates in this order for Nginx cat 'clarin.eu/cert/GeoTrustGlobalCA.cer' 'newline' 'clarin.eu/cert/RapidSSLSHA256CA-G3.cer' 'newline' > 'trusted_bundle.cer' dos2unix 'trusted_bundle.cer'
Testing connectivity to an HTTPS web server that uses Server Name Indication
If you have e.g. a Docker container listening on 127.0.0.1, port 443, issue:
curl -v --resolve 'infra.clarin.eu:443:127.0.0.1' 'https://infra.clarin.eu'
