ログイン: ユーザー名 パスワード
  SSL証明書とは?  
SSL証明書の必要性
GeoTrust社とは?
GeoTrust SSLの詳細

  通常のSSL証明書  
企業実在認証SSL
サブドメイン無制限SSL
価格比較表
御見積書発行

  よく頂くご質問  
エラー!?
お申し込みの流れ
お申し込みはこちら

  CSR作成方法  
証明書インストール方法

SSL証明書についてのご意見・ご質問はございませんか?お気軽にご相談下さい。すぐに対応致します。

お名前:
Eメールアドレス:
質問内容:


注意:Eメールアドレスが間違っておりますと、お返事ができませんので、再確認をお願い致します。
よく頂くご質問


CSR作成方法のメインページへ戻る

Apache + SSLeay - SSL証明書

Follow these instructions to generate a CSR for your Web site. When you have completed this process, click the "close" button below to close this window and continue to the next step.  

  1. Install SSLeay, if not found on your server.

  2. Create a RSA key for your Apache server:

    If you have a different path, cd to your server’s private key directory

  3. Type the following command to generate a private key that is file encrypted. You will be prompted for the password to access the file and also when starting your webserver: Warning: If you lose or forget the passphrase, you must purchase another certificate.

    SSLeay genrsa -des3 -out domainname.key 1024

You could also create a private key without file encryption:

SSLeay genrsa -out domainname.key 1024

Note: We recommend that you name the private key using the domain name that you are purchasing the certificate for ie domainname.key

  1. Type the following command to create a CSR with the RSA private key (output will be PEM format):

    SSLeay req -new -key domainname.key -out domainname.csr

    2. * Note: You will be prompted for your PEM passphrase if you included the "-des3" switch in step 3.

  2. When creating a CSR you must follow these conventions. Enter the information to be displayed in the certificate. The following characters can not be accepted: < > ~ ! @ # $ % ^ * / \ ( ) ?.,&

    DN フィールド

    説明

    Common Name Common Name(コモン・ネーム)はドメイン名と同じです。

    www.securestage.com

    サブドメインの場合は:
    japan.securestage.com

    「http://」は入力しないでください。
    Organization 会社名・組織名を入力してください。 Taka Enterprise Ltd
    Organization Unit 部署名を入力してください。 Technology
    City or Locality 市区町村を入力してください。 Nakano-ku
    State or Province 都道府県を入力してください。 Tokyo
    または
    Tokyo-to
    Country 二文字の国名を入力してください。日本はJPです。 JP

  3. Do not enter extra attributes at the prompt.

    4. Warning: Leave the challenge password blank (press )

    Note: If you would like to verify the contents of the CSR, use the following command:

    SSLeay req -noout -text -in domainname.csr

  4. Cut-and-paste your CSR with a text editor, then submit your CSR to GeoTrust by clicking on http://www.geotrust.com/webtrust/index.htm. You will be asked to complete the agreement and the enrollment form as well.

Create a backup of your private key!

Make a copy of the private key file (domainname.key) generated in step 3 and store it in a safe place! If you lose this file, you must purchase a new certificate.

* The private key file should begin with (when using a text editor)

-----BEGIN RSA PRIVATE KEY----- and end with -----END RSA PRIVATE KEY-----.

To view the contents of the private key, use the following command:

    SSLeay rsa -noout -text -in domainname.key