Stack Overflow
Stack Overflow

Questions tagged [ssl-certificate]

An SSL certificate is an X.509 certificate that is used to provide authentication, privacy and integrity for a secure connection. Although the acronym refers to Secure Sockets Layer, the SSL protocol is deprecated and the certificates are more commonly used for Transport Layer Security (TLS) connections.

An SSL certificate is an X.509 certificate that is used to provide authentication, privacy and integrity for a secure connection. Although the acronym refers to Secure Sockets Layer, the SSL protocol is deprecated and the certificates are more commonly used for Transport Layer Security (TLS) connections.

10580 questions
133
votes
1 answer

How can I generate a self-signed certificate with SubjectAltName using OpenSSL?

I am trying to generate a self-signed certificate with OpenSSL with SubjectAltName in it.While I am generating the csr for the certificate, my guess is I have to use v3 extensions of OpenSSL x509. I am using : openssl req -new -x509 -v3 -key…
mohanjot
  • 1,490
  • 2
  • 11
  • 15
131
votes
3 answers

What's the difference between the Personal and Web Hosting certificate store?

In Internet Information Services Manager, you're given the option between the Personal and the Web Hosting certificate store when creating or importing a certificate. What's the difference?
Sam Rueby
  • 5,914
  • 6
  • 36
  • 52
124
votes
1 answer

SSL Error: unable to get local issuer certificate

I'm having trouble configuring SSL on a Debian 6.0 32bit server. I'm relatively new with SSL so please bear with me. I'm including as much information as I can. Note: The true domain name has been changed to protect the identity and integrity of the…
Jamie Counsell
  • 7,730
  • 6
  • 46
  • 81
124
votes
9 answers

Using psql to connect to PostgreSQL in SSL mode

I am trying to configure ssl certificate for PostgreSQL server. I have created a certificate file (server.crt) and key (server.key) in data directory and update the parameter SSL to "on" to enable secure connection. I just want only the server to be…
Lolly
  • 34,250
  • 42
  • 115
  • 150
118
votes
9 answers

How to configure axios to use SSL certificate?

I'm trying to make a request with axios to an api endpoint and I'm getting the following error: Error: unable to verify the first certificate It seems the https module, which axios uses, is unable to verify the SSL certificate used on the…
Jemi Salo
  • 3,401
  • 3
  • 14
  • 25
118
votes
10 answers

Is there a way to make Firefox ignore invalid ssl-certificates?

I am maintaining a few web applications. The development and qa environments use invalid/outdated ssl-certificates. Although it is generally a good thing, that Firefox makes me click like a dozen times to accept the certificate, this is pretty…
Mo.
  • 15,033
  • 14
  • 47
  • 57
117
votes
5 answers

How to list the certificates stored in a PKCS12 keystore with keytool?

I wanted to list the certificates stored in a PKCS12 keystore. The keystore has the extension .pfx
David García González
  • 5,164
  • 8
  • 29
  • 35
115
votes
3 answers

How to convert a private key to an RSA private key?

Let me explain my question first. I bought a certificate from a CA and used the following format to generate the csr and the private key: openssl req -new -newkey rsa:2048 -nodes -keyout server.key -out server.csr When I open the server.key file, I…
Silent User
  • 2,657
  • 7
  • 29
  • 36
114
votes
1 answer

How to disable cURL SSL certificate verification

Hello i want to use an API for a website but there an error with my curl command. I want to disable SSL certificate verification. curl: (60) SSL certificate problem: self signed certificate in certificate chain More details here:…
Micky
  • 1,295
  • 3
  • 8
  • 5
110
votes
2 answers

How do I configure Git to trust certificates from the Windows Certificate Store?

Currently I have the following entry in my .gitconfig in my user directory. ... [http] sslCAInfo=C:\\Users\\julian.lettner\\.ssh\\git-test.pem ... This sets the certificate to use when interacting with the git server (required by my company's…
Julian Lettner
  • 3,309
  • 7
  • 32
  • 49
109
votes
3 answers

How to save public key from a certificate in .pem format

I am using the below openssl command for storing my public key into a .pem file. openssl> x509 -in E:/mycert.pem -pubkey -out E:/mypubkey.pem But when i try to use this command, it is storing the whole certificate info in the mypubkey.pem file. I…
Ankit
  • 1,330
  • 2
  • 11
  • 16
108
votes
8 answers

What RSA key length should I use for my SSL certificates?

I'm in the process of creating a CSR, and I wonder which is arguably the best length for my RSA key. Of course, 384 is probably too weak, and 16384 is probably too slow. Is there a consensus on the key length one should use, depending on the…
Brann
  • 31,689
  • 32
  • 113
  • 162
107
votes
3 answers

How do Common Names (CN) and Subject Alternative Names (SAN) work together?

Assuming the Subject Alternative Name (SAN) property of an SSL certificate contains two DNS names domain.example host.domain.example but the Common Name (CN) is set to only one of both: CN=domain.example. Does this setup have a special meaning,…
Jürgen Thelen
  • 12,745
  • 7
  • 52
  • 71
103
votes
7 answers

How do I add a CA root certificate inside a docker image?

I am running an ASP.NET Core 1.1 Web API in a Docker 1.13.1 container on Ubuntu 14.04. When the code attempts to retrieve some data from an HTTPS server, I get this certificate authentication error: An error occurred while sending the request. --->…
Peter
  • 5,455
  • 7
  • 46
  • 68
102
votes
6 answers

Caused by: java.security.UnrecoverableKeyException: Cannot recover key

I am supplied with a jks keystore named ABCC_client.store. When I import this keystore to cacerts and try connecting it says No such Algorithm error. PFA the stacktrace Caused by: java.security.NoSuchAlgorithmException: Error constructing…
Mrinal Bhattacharjee
  • 1,326
  • 4
  • 10
  • 15
1 2 3
99 100