Create a private key and self-signed certificate#
server.confconfiguration file, setting
subjectAltNameas appropriate, for example:
[req] prompt = no x509_extensions = v3_ca distinguished_name = req_distinguished_name [req_distinguished_name] C = US ST = DC L = Washington O = Open Contracting Partnership CN = open-contracting.org emailAddress = firstname.lastname@example.org [v3_ca] subjectAltName = DNS:xyz.open-contracting.org
Create a private key and self-signed certificate.
openssl req -nodes -x509 -days 3650 -out server.crt -newkey rsa:2048 -keyout server.key -config server.conf
Check the certificate.
openssl x509 -in server.crt -noout -text