自己証明書のhttpsで証明書エラーを非表示にするメモ
# --- hostnameを変更する # vi /etc/sysconfig/network HOSTNAME=192.168.56.130 # shutdown -r now # --- httpdとSSLをインストール # yum install -y httpd mod_ssl # --- 秘密鍵を作成 # openssl genrsa -out server.key 2048 # --- 証明書(csr)の生成 # openssl req -new -key server.key -out server.csr -subj "/C=JP/ST=Tokyo/L=Tokyo/O=super_office.jp/OU=Web/CN=$(hostname)" # --- csrに署名しサーバー証明書(crt)を作成 # openssl x509 -in server.csr -days 3650 -req -signkey server.key > server.crt Signature ok subject=/C=JP/ST=Tokyo/L=Tokyo/O=super_office.jp/OU=Web/CN=192.168.56.130 Getting Private key # --- httpdの設定 # vi /etc/httpd/conf.d/ssl.conf - SSLCertificateFile /etc/pki/tls/certs/localhost.crt - SSLCertificateKeyFile /etc/pki/tls/private/localhost.key + SSLCertificateFile /opt/server.crt + SSLCertificateKeyFile /opt/server.key # --- httpdの再起動 # /etc/init.d/httpd restart