如何生成PEM文件以安装我自己的SSL证书?
我有一个SSL证书Comodo PositiveSSL 有以下文件:如何生成PEM文件以安装我自己的SSL证书?,ssl,pem,chain,bitrix,Ssl,Pem,Chain,Bitrix,我有一个SSL证书Comodo PositiveSSL 有以下文件: AddTrustExternalCARoot.crt COMODORSAAddTrustCA.crt COMODORSADomainValidationSecureServerCA.crt domain.com.key domain_com.crt 供应商要求: The certificate, private key, and certificate chain must be PEM-encoded /ssl/test1
AddTrustExternalCARoot.crt
COMODORSAAddTrustCA.crt
COMODORSADomainValidationSecureServerCA.crt
domain.com.key
domain_com.crt
供应商要求:
The certificate, private key, and certificate chain must be PEM-encoded
/ssl/test1.bx.key.pem
/ssl/test1.bx.cert.pem
/ssl/test1.bx.ca-chain.cert.pyem
我是否正确创建PEM文件
cat COMODORSAAddTrustCA.crt COMODORSADomainValidationSecureServerCA.crt AddTrustExternalCARoot.crt > domain.com.ca-chain.cert.pem
cat domain_com.crt COMODORSADomainValidationSecureServerCA.crt COMODORSAAddTrustCA.crt AddTrustExternalCARoot.crt > domain.com.cert.pem
cat domain.com.key domain_com.crt COMODORSADomainValidationSecureServerCA.crt COMODORSAAddTrustCA.crt AddTrustExternalCARoot.crt > domain.com.key.pem
我是否正确创建PEM文件
cat COMODORSAAddTrustCA.crt COMODORSADomainValidationSecureServerCA.crt AddTrustExternalCARoot.crt > domain.com.ca-chain.cert.pem
cat domain_com.crt COMODORSADomainValidationSecureServerCA.crt COMODORSAAddTrustCA.crt AddTrustExternalCARoot.crt > domain.com.cert.pem
cat domain.com.key domain_com.crt COMODORSADomainValidationSecureServerCA.crt COMODORSAAddTrustCA.crt AddTrustExternalCARoot.crt > domain.com.key.pem
否。密钥文件不应是串联文件的结果。我不知道你们的供应商,但我相信domain.com.key
=/ssl/test1.bx.key.pem
我想从你们的供应商那里得到什么,但我当然不能肯定
/ssl/test1.bx.cert.pem = domain_com.crt
/ssl/test1.bx.ca-chain.cert.pyem = AddTrustExternalCARoot.crt + COMODORSAAddTrustCA.crt + COMODORSADomainValidationSecureServerCA.crt
要在bitrix env中设置证书,您需要执行以下操作:
/etc/nginx/ssl/example\u com/
ssl_certificate /etc/ssl/certs/ssl-bundle.crt;
ssl_certificate_key /etc/ssl/private/domainname.key;
ssl_prefer_server_ciphers on;
systemctl重新启动nginx.service
查看关于nginx的Comodo知识库。他们逐步介绍了如何在不同的web服务器上安装证书。学习openssl等工具。