How to create a self-signed Certificate

Overview The following is an extremely simplified view of how SSL is implemented and what part the certificate plays in the entire process. Normal web traffic is sent unencrypted over the Internet. That is, anyone with access to the right tools can snoop all of that traffic. Step 1: Generate a Private Key The openssl toolkit is used to generate an RSA Private Key and CSR (Certificate Signing Request). Step 2: Generate a CSR (Certificate Signing Request) Once the private key is generated a Certificate Signing Request can be generated. Step 3: Remove Passphrase from Key One unfortunate side-effect of the pass-phrased private key is that Apache will ask for the pass-phrase each time the web server is started. Step 4: Generating a Self-Signed Certificate At this point you will need to generate a self-signed certificate because you either don't plan on having your certificate signed by a CA, or you wish to test your new SSL implementation while the CA is signing your certificate.

The Most Common Java Keytool Keystore Commands Java Keytool is a key and certificate management utility. It allows users to manage their own public/private key pairs and certificates. It also allows users to cache certificates. Java Keytool stores the keys and certificates in what is called a keystore. By default the Java keystore is implemented as a file. It protects private keys with a password. Each certificate in a Java keystore is associated with a unique alias. Note: For easier management of your Java Keystores (using a GUI) check out Portecle. Compare SSL Certificates Below, we have listed the most common Java Keytool keystore commands and their usage: Java Keytool Commands for Creating and Importing These commands allow you to generate a new Java Keytool keystore file, create a CSR, and import certificates. Java Keytool Commands for Checking If you need to check the information within a certificate, or Java keystore, use these commands. Other Java Keytool Commands Digg del.icio.us Reddit