Here are my scripts I like to use to manage SSL/TLS certs.
Note scripts that use the crt file depend on you having gone through the process to get your crt to use with these scripts. If you're starting from scratch:
- Make your private key.
- Make your Certificate Signing Request (CSR) using the key.
- Submit the CSR to whomever you're getting your certificate from.
- Go through whatever the SSL/TLS vendor's process is and get your Certificate (CRT).
- Many users will be happy with their key and crt files. Some will need to combine the crt with bundled chained certs. There are various helper scripts that'll get you to convert the certificates to various formats.
./makeSelfSignedSSLCertificate.sh whiskeytangofoxtrot.netThis invokation would create whiskeytangofoxtrot.net.key and whiskeytangofoxtrot.net.crt Makes your private key. It only really needs to be called when you're first setting things up. Creates a CSR, using your private key Makes a combined crt from what's given by the SSL/TLS vendor I tend to use (optional) Concatenates your crt and private key files to make a pem. According to some dude on the Internet, some MS-like services won't let you provide the private key separately, so... Yeah.. That's "cool". Theoretically, this helps there. Concatenates your crt and private key files to make a pfx.