Skip to content
/ ssl-kit Public
forked from docdawning/ssl-kit

Helpers I use to handle my ssl/tls certs

0 stars 2 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

grunt009/ssl-kit

BranchesTags
 
 

Repository files navigation

Here are my scripts I like to use to manage SSL/TLS certs.

Note scripts that use the crt file depend on you having gone through the process to get your crt to use with these scripts. If you're starting from scratch:

  1. Make your private key.
  2. Make your Certificate Signing Request (CSR) using the key.
  3. Submit the CSR to whomever you're getting your certificate from.
  4. Go through whatever the SSL/TLS vendor's process is and get your Certificate (CRT).
  5. Many users will be happy with their key and crt files. Some will need to combine the crt with bundled chained certs. There are various helper scripts that'll get you to convert the certificates to various formats.

Disclaimer

These are provided as-is. Hence, if they set your house on fire (etc), then I guess you did it to yourself? I use most of these scripts for my production context, but I can't guarantee anything. The MS-oriented ones I haven't really fully tested. I learn as I go. Good luck. ^_^

makeSelfSignedSSLCertificate.sh

This is a one-shot that'll make both a private key and a self-signed SSL certificate for you. This is nice because you can get SSL for free. But it sucks because it's self-signed SSL that will make most browsers have a minor panic-attack and send users running away. But, for development contexts, etc, it's handy to have. Use it like: 
./makeSelfSignedSSLCertificate.sh whiskeytangofoxtrot.net
This invokation would create whiskeytangofoxtrot.net.key and whiskeytangofoxtrot.net.crt

makePrivateKey.sh

Makes your private key. It only really needs to be called when you're first setting things up.

makeCSR.sh

Creates a CSR, using your private key

makeCombinedCrt.sh

Makes a combined crt from what's given by the SSL/TLS vendor I tend to use (optional)

makePem.sh

Concatenates your crt and private key files to make a pem. According to some dude on the Internet, some MS-like services won't let you provide the private key separately, so... Yeah.. That's "cool". Theoretically, this helps there.

makePfx.sh

Concatenates your crt and private key files to make a pfx.

About

Helpers I use to handle my ssl/tls certs

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Shell 100.0%