Change Email address of LetsEncrypt SSL
To change email address of LetsEncrypt SSL certficate account, run certbot update_account –email [email protected] See LetsEncrypt
View SSL certficate Details
To view certificate details openssl x509 -text -noout -in SSL_FILE.crt For web server openssl s_client -showcerts -connect serverok.in:443 Or curl
Delete LetsEncrypt SSL certficate
To list all available LetsEncrypt SSL certficates, run certbot certificates To delete a certificate, run certbot delete –cert-name NAME_OF_SSL_CERT You
Remove SSL private key password
To remove password from SSL private key, run openssl rsa -in PASSWORD_PROTECTED.key -out NO_PASSWORD.key This will ask for password. Once
Convert SSL certificate into PFX format
To convert SSL certficiate into PFX format, run openssl pkcs12 -export -out certificate.pfx -inkey private-key.key -in certificate.crt -certfile ca-certificate.crt Example
Purchase SSL
Here are some cheap SSL providers https://www.sslforfree.com/ https://zerossl.com https://www.ssls.com/ https://www.gogetssl.com https://www.namecheap.com/security/ssl-certificates/comodo/ See SSL
Nginx Proxy SSL Verification
When using Nginx as a reverse proxy, you may need to handle SSL verification requests. Passing this request to the
Create SSL pem file
To make .pem file from SSL certificate, run cat yourdomain.key yourdomain.crt yourdomain.ca-bundle > yourdomain.pem Here is the format —–BEGIN RSA
Verify SSL Key matches with Private Key
To verify if SSL key match with the private Key, run following commands and compare resulting hash, it should match
Amazon Linux Invalid command SSLEngine
On Amazon Linux, when restarting Apache server, i get error [root@ip-172-16-20-44 conf.d]# service httpd restart Stopping httpd: [ OK ]
Nginx Curl SSL error
After installing SSL on Nginx server, it worked on browser, but when i try access using curl command, i get
SSL
SSL Life Time Reduced to 397 days https://serverok.in/redirect Letsencrypt Amazon Linux Invalid command SSLEngine Purchase SSL Convert SSL certificate into