A few days ago, I encountered an issue when using a self-signed certificate. The use case of the self-signed certificate is simple. I created a self-signed certificate with openssl and configure it in the application. There is no issue on… Read More
use openssl to retrieve certificate
These days I am working on a certificate issue. During the debug session, I got a trick about how to retrieve the certificate from a server without using a browser. This is convenient in non-GUI environment, for example, shell environment.… Read More
create self-signed certificate with san
I explained why google chrome browser does not respect a certificate without Subject Alternative Name in my earlier post. I also showed how to create a self-signed certificate using a single openssl command, but that certificate did not include SAN.… Read More
chrome does not use commonName to verify site certificate
I showed how to create a self-signed certificate using openssl command line in this post. However, after I created a self-signed certificate using the similar openssl command and deployed the certificate in a Kubernete ingress, I always got a warning… Read More
create self-signed certificate
Use the below command to create a self-signed certificate: openssl req -x509 -days 365 -nodes -newkey rsa:2048 -keyout tls.key -out tls.crt \ -subj “/C=CN/ST=Shandong/L=Qingdao/O=Nokia/OU=RD Team/CN=deskshell.com” A very good reference material can be found in digital ocean as below openssl essentials