centOS系统生成csr

admin(高坂穗乃果)

1.查看是否安装httpd和SSL（如果有就可以进行下一步）

[root@localhost ~]# rpm -qa | grep httpd

httpd-tools-2.2.15-47.el6.centos.4.x86_64

[root@localhost ~]# rpm -qa | grep ssl

openssl-1.0.1e-42.el6_7.4.x86_64

openssl-devel-1.0.1e-42.el6_7.4.x86_64

docbook-style-dsssl-1.79-10.el6.noarch

mod_ssl-2.2.15-47.el6.centos.4.x86_64

nss_compat_ossl-0.9.6-1.el6.x86_64

2.生成服务器私钥（以abc.cn为例）

[root@localhost /]# cd /opt

[root@local opt]# openssl genrsa -out abc.cn.key 2048

Generating RSA private key, 2048 bit long modulus

...............+++

...............+++

e is 65537 (0x10001)

3.用私钥server.key文件生成证书请求文件csr

[root@local opt]# openssl req -new -out abc.cn.csr -sha256 -key abc.cn.key

You are about to be asked to enter information that will be incorporated

into your certificate request.

There are quite a few fields but you can leave some blank

For some fields there will be a default value,

If you enter '.', the field will be left blank.

-----

Country Name (2 letter code) [XX]:CN #国家

State or Province Name (full name) []:zhejiang #省份

Locality Name (eg, city) [Default City]:hangzhou #城市

Organization Name (eg, company) [Default Company Ltd]:22 #公司名称/个人直接填写姓名

Organizational Unit Name (eg, section) []:22 #部门名称/个人直接填写姓名

Common Name (eg, your name or your server's hostname) []:abc.cn #需要申请的域名

Email Address []:22@22.cn

Please enter the following 'extra' attributes

to be sent with your certificate request #提示你输入一个密码,不用理他直接回车

A challenge password []:

An optional company name []:

[root@local opt]#