我想提供我的网站在Nginx下的ssl支持。
首先,我曾尝试使用自签名的证书,但正如你所知道的浏览器抱怨nginx和ssl证书
此连接不受信任
其次,我试图整理知名自由证书证书颁发机构(symantec.com)。但它给我发送证书形式:
----- BEGIN CERTIFICATE ----- MIIFhzCCBG + gAwIBAgIQIe7e9lh4GqB0cr9kdPKPbjANBgkqhkiG9w0BAQUFADCB yzELMAkGA1UEBhMCVVMxFzAVBgNVBAoTDlZlcmlTaWduLCBJbmMuMTAwLgYDVQQL EydGb3IgVGVzdCBQdXJwb3NlcyBPbmx5LiAgTm8gYXNzdXJhbmNlcy4xQjBABgNV BAsTOVRlcm1zIG9mIHVzZSBhdCBodHRwczovL3d3dy52ZXJpc2lnbi5jb20vY3Bz L3Rlc3RjYSAoYykwOTEtMCsGA1UEAxMkVmVyaVNpZ24gVHJpYWwgU2VjdXJlIFNl cnZlciBDQSAtIEcyMB4XDTEzMDcwNTAwMDAwMFoXDTEzMDgwNDIzNTk1OVowgasx CzAJBgNVBAYTAlVBMQ0wCwYDVQQIEwRLeWl2MQ0wCwYDVQQHFARLeWl2MQ0wCwYD VQQKFARVSUlQMRgwFgYDVQQLFA9zeXN0ZW0gYW5hbHlzaXMxOjA4BgNVBAsUMVRl cm1zIG9mIHVzZSBhdCB3d3cudmVyaXNpZ24uY29tL2Nwcy90ZXN0Y2EgKGMpMDUx GTAXBgNVBAMUEGVmaWxpbmcudWlwdi5vcmcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOq5JajVn8VEINqH6N61f8BwS3M2U9mIcwGt7Q829f + RaYqcF/ /+ 2 + Zzmv72Hismgo6cu5N/ONtEBpJ69zkDjC9vD3IluCSimtu9CyMfG0z + V4tRr8 XxmdMnzSJNs + aBxM + ljODVuYjQ5r2YCsPl/GeVAHn41Qa76m0Efz1 + XgfsmoSxSe hhwBB7upJ1YvalRRvcGFGmqMQFiy2 + 8G/l3gCAuCgt + qniEoyNnOGWArkMm5pNUN v0ciaDr8OTzBCx + RvI5sUA2 + iM4mm7Jl7i9oKO6YvcXhpIBOHQDFuGkF5IEoyKAC 1ioBByqN9OT5UicTY25PddE133WU0gN1cBwXAgMBAAGjggGDMIIBfzAbBgNVHREE FDASghBlZmlsaW5nLnVpcHYub3JnMAkGA1UdEwQCMAAwDgYDVR0PAQH/BAQDAgWg MEMGA1UdHwQ8MDowOKA2oDSGMmh0dHA6Ly9TVlJUcmlhbC1HMi1jcmwudmVyaXNp Z24uY29t L1NWUlRyaWFsRzIuY3JsMEoGA1UdIARDMEEwPwYKYIZIAYb4RQEHFTAx MC8GCCsGAQUFBwIBFiNodHRwczovL3d3dy52ZXJpc2lnbi5jb20vY3BzL3Rlc3Rj YTAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwHwYDVR0jBBgwFoAUKBcT ir3WorXcBiy3to7aEGZgbuUwdAYIKwYBBQUHAQEEaDBmMCQGCCsGAQUFBzABhhho dHRwOi8vb2NzcC52ZXJpc2lnbi5jb20wPgYIKwYBBQUHMAKGMmh0dHA6Ly9TVlJU cmlhbC1HMi1haWEudmVyaXNpZ24uY29tL1NWUlRyaWFsRzIuY2VyMA0GCSqGSIb3 DQEBBQUAA4IBAQC4SQgLwIcrsvrdQlEpP3kQFJMtPBeoYPYouMfT/Fa4VtsL8Vxi 0YqGY8MGXPeESCqEFSciD8ZTaUvbMqaZe/iBPpsyLBpI2 + aeksJBwMYtRLASCzIG ----- END CERTIFICATE -----
但Nginx的需要是一个.key和.cer文件。
任何建议如何获得形式知名的CA免费证书(.key和.cer文件)?
感谢您的回复。是的,首先,我创建了一个csr文件。其次,我将其上传到CA服务。一个csr文件是我的密钥文件,不是吗? –
是的,但创建您需要一个密钥的CSR,你是如何创建CSR –
谢谢,穆罕默德。首先,我创建了一个.key文件。我忘了。 –