[Gandi] [Simple Hosting] Génération de la ‘Demande de Signature de Certificat’ / ‘Certificate Signing Request’ (CSR).
1/ Connexion sur l’instance Simple Hosting via la console ‘ssh‘ :
[~] ➔ ssh 7555491@console.dc0.gpaas.net Asking for console, please wait Connected Grabbing terminal Ok Press [Enter] to start a shell hosting-user@testssl:/srv/data$
Lien :
https://wiki.gandi.net/fr/simple/console
2/ Se déplacer dans le répertoire temporaire ‘/srv/data/tmp/‘ :
hosting-user@testssl:/srv/data$ cd /srv/data/tmp/ hosting-user@testssl:/srv/data/tmp$
3/ Génération de la ‘Demande de Signature de Certificat‘ / ‘Certificate Signing Request‘ (CSR) :
Informations à indiquer dans la ligne de commande ‘openssl’ :
Chiffrement : SHA2
Clé RSA : 2048
Common Name : framboisepi.info = Nom de domaine à protégé
Soit :
hosting-user@testssl:/srv/data/tmp$ openssl req -nodes -newkey rsa:2048 -sha256 -keyout framboisepi.info.key -out framboisepi.info.csr Generating a 2048 bit RSA private key .............................+++ .......................................................................+++ writing new private key to 'framboisepi.info.key' ----- You are about to be asked to enter information that will be incorporated into your certificate request. What you are about to enter is what is called a Distinguished Name or a DN. There are quite a few fields but you can leave some blank For some fields there will be a default value, If you enter '.', the field will be left blank. ----- Country Name (2 letter code) [AU]:FR State or Province Name (full name) [Some-State]:Meurthe-et-Moselle Locality Name (eg, city) []:Mexy Organization Name (eg, company) [Internet Widgits Pty Ltd]:FramboisePi Organizational Unit Name (eg, section) []: (ne rien mettre) Common Name (e.g. server FQDN or YOUR name) []:framboisepi.info Email Address []:lesanglierdesardennes@gmail.com Please enter the following 'extra' attributes to be sent with your certificate request A challenge password []: (ne rien mettre) An optional company name []: (ne rien mettre) hosting-user@testssl:/srv/data/tmp$
4/ Vérification que les fichiers ont été correctement généré :
hosting-user@testssl:/srv/data/tmp$ ls -l framboisepi.info.* -rw-rw-rw- 1 hosting-user hosting-admin 1074 Sep 22 08:10 framboisepi.info.csr -rw-rw-rw- 1 hosting-user hosting-admin 1708 Sep 22 08:10 framboisepi.info.key
5/ Afficher le contenu du fichier ‘.csr’ :
hosting-user@testssl:/srv/data/tmp$ cat framboisepi.info.csr -----BEGIN CERTIFICATE REQUEST----- 666C4DCCAcgCAQAwgZoxCzAJBgNVBAYTAkZSMRswGQYDVQQIDBJNZXVydGhlLWV0 LU1vc2VsbGUxDTALBgNVBAcMBE1leHkxFDASBgNVBAoMC0ZyYW1ib2lzZVBpMRkw FwYDVQQDDBBmcmFtYm6662VwaS5pbmZvMS4wLAYJKoZIhvcNAQkBFh9sZXNhbmds aWVyZGVzYXJkZW5uZXNAZ21haWwuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEA4Czntvdg2Z7yV6aNPlj1Rag44c1/bKCbxJD0zt5AuZHnD0+qkNW2 wcJCKCKPTB1OV5vFfu6NCzQ35gmKm8+RFKNDvcggRS+zL666LVfJCP8eNQ0YF+th GmAqWTOsIrxyxRIZiKfNV6UDtqXt46idOH5Wz5BYs1IQdzU0oHF+LTABFWJ6pN1J DUQLO7tyHYnNnlcfULW3OF8CuHeSax7yN0lN1I0nS/meS4SKrlzTI6uC5XbmwREl zAGHv666h3MBg/tjA+8lYFQs/yiPXbGWkMJnf3LcNdx9zhNb4Bdg1Qp8OuWZmkin Gpg8/a1JztIcy7WcBZ3UxK6SKH0V0VcrIwIDAQABoAAwDQYJKoZIhvcNAQELBQAD ggEBAKVKVTBt5gMJ9FbFM0pIuw63kZl9ZrdSfa177irbJhSYrv5Jg6m3TJ6OEdkC 2S9K4B8MYKvTqMjvl4mqDl0666UTqA7mc/DOOrmX7lDRNiLRE88wdl5rBlS6e6uE 9p+fNLhCC0ufbgUtnVtRgg+3C3DeJ5B9m80mOviff4i+XDQBslm1JCrYD7pBoV5Q 3MwSmJSaa567yyhoJlva2soV2SL1OnooYvmuMVtWWBn9SiVGU5T6666djoTy8D+/ vKqPIfS/F3p/aHecuOOzju5rzquF6UTv8PO7FNrz3ifsugYsUI7dJ956ThjAH9sn sACDM3DB5fAXrMtMlpcYFVRfctI= -----END CERTIFICATE REQUEST-----
6/ Téléchargement des fichiers générés via le logiciel Filezilla :
Site officiel : https://filezilla-project.org/
Utilisation de Filezilla : https://wiki.gandi.net/fr/simple/sftp/filezilla
Répertoire SFTP où se trouve les fichiers :
/lamp0/tmp
7/ Liens :
https://wiki.gandi.net/fr/ssl/csr
http://rockstarninja.tech/gandiserveur-generation-des-certificats-ssl/
Comments are closed, but trackbacks and pingbacks are open.