Skip to content

HOWTO: Nginx SSL Chain , or private->intermediate->ca

January 12, 2016

When you issue cert and want to put it on your nginx, there is a little thing to make in mind.

Nginx wants one file (also called ssl bundle), where all your certs are put in order!

The order is:

  1. your_cert (your server crt)
  2. intermediate cert (your ssl provider intermediate ssl)
  3. CA cert (your ssl provider CA)

 

Check is your key, csr and crt match. Basically you do openssl requests on them , then md5sum on the results. The md5 hashesh should be the same!!!

Example:

 openssl x509 -noout -modulus -in certificate.crt | openssl md5
 openssl rsa -noout -modulus -in privateKey.key | openssl md5
 openssl req -noout -modulus -in CSR.csr | openssl md5

Get more info on these sources:
https://www.sslshopper.com/certificate-key-matcher.html
https://www.digicert.com/ssl-certificate-installation-nginx.htm

Advertisements

From → nginx

Leave a Comment

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: