bildo Posted September 24, 2008 Share Posted September 24, 2008 I'm stuck...I created a self signed certificate one year ago. It has since expired. So...I created a new certificate just like I did a year ago. For the life of me it will not see the new certificate. It still shows the last certificate on all browsers. Is there another keystore for apache somewhere? Script used to create key...this script is over a year old...called like ./create-cs.sh server. Cert is located at /etc/https/ssl just like before. SSL is still operable just has the old cert. Thought? #!/bin/sh # Generate our Certificate Authority openssl genrsa -des3 -out ca.key 4096 openssl req -new -x509 -days 730 -key ca.key -out ca.crt # Generate our Server key, request to sign and certificate openssl genrsa -des3 -out $1.key 4096 openssl req -new -key $1.key -out $1.csr openssl x509 -req -days 730 -in $1.csr -CA ca.crt -CAkey ca.key -set_serial 01 -out $1.crt # Remove the passphrase - Comment out if not desired mv $1.key $1.key.passphrase openssl rsa -in $1.key.passphrase -out $1.key Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.